Intrusion Prevention

Micro.Focus.Rumba.WallData.Macro.PlayMacro.Memory.Corruption

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in Micro Focus Rumba.
The vulnerability is caused by a lack of bounds checking on an argument passed to PlayMacro() function. An attacker can trick an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the application.

Affected Products

Micro Focus Rumba 9.4.0 SP0 Patch0
Micro Focus Rumba 9.4.4058.0

Impact

System Compromise: Remote attackers can execute arbitrary code within the context of the application.

Recommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

CVE References

CVE-2016-5228

Other References

ZSL-2016-5327