CVE-2013-4988 - OpenCVE

Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Icofx	Icofx

Configuration 1 [-]

OR	cpe:2.3:a:icofx:icofx::::::::
	cpe:2.3:a:icofx:icofx:1.6:::::::*
	cpe:2.3:a:icofx:icofx:1.6.1:::::::*
	cpe:2.3:a:icofx:icofx:1.6.2:::::::*
	cpe:2.3:a:icofx:icofx:1.6.3:::::::*
	cpe:2.3:a:icofx:icofx:1.6.4:::::::*
	cpe:2.3:a:icofx:icofx:2.0:::::::*
	cpe:2.3:a:icofx:icofx:2.1:::::::*
	cpe:2.3:a:icofx:icofx:2.2:::::::*
	cpe:2.3:a:icofx:icofx:2.3:::::::*
	cpe:2.3:a:icofx:icofx:2.4:::::::*

References

Link	Resource
http://archives.neohapsis.com/archives/bugtraq/2013-12/0046.html	Exploit
http://osvdb.org/100826
http://packetstormsecurity.com/files/124380/IcoFX-2.5.0.0-Buffer-Overflow.html	Exploit
http://packetstormsecurity.com/files/162995/IcoFX-2.6-Buffer-Overflow.html
http://seclists.org/fulldisclosure/2013/Dec/54	Exploit
http://secunia.com/advisories/55964	Vendor Advisory
http://www.coresecurity.com/advisories/icofx-buffer-overflow-vulnerability	Exploit
http://www.exploit-db.com/exploits/30208	Exploit
http://www.securityfocus.com/bid/64221
https://exchange.xforce.ibmcloud.com/vulnerabilities/89611

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2013-12-13T15:00:00

Updated: 2021-06-07T15:06:10

Reserved: 2013-07-29T00:00:00

Link: CVE-2013-4988

JSON object: View

NVD Information

Status : Modified

Published: 2013-12-13T18:07:51.373

Modified: 2021-06-07T16:15:07.837

Link: CVE-2013-4988

JSON object: View

Redhat Information

No data.

CWE

CWE-119

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-12-10T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-06-07T15:06:10", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "icofx-cve20134988-bo(89611)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89611"}, {"name": "20131210 CORE-2013-1107 - IcoFX Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://archives.neohapsis.com/archives/bugtraq/2013-12/0046.html"}, {"name": "100826", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/100826"}, {"name": "30208", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "http://www.exploit-db.com/exploits/30208"}, {"tags": ["x_refsource_MISC"], "url": "http://www.coresecurity.com/advisories/icofx-buffer-overflow-vulnerability"}, {"name": "20131210 CORE-2013-1107 - IcoFX Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://seclists.org/fulldisclosure/2013/Dec/54"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/124380/IcoFX-2.5.0.0-Buffer-Overflow.html"}, {"name": "55964", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/55964"}, {"name": "64221", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/64221"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/162995/IcoFX-2.6-Buffer-Overflow.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-4988", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "icofx-cve20134988-bo(89611)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89611"}, {"name": "20131210 CORE-2013-1107 - IcoFX Buffer Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://archives.neohapsis.com/archives/bugtraq/2013-12/0046.html"}, {"name": "100826", "refsource": "OSVDB", "url": "http://osvdb.org/100826"}, {"name": "30208", "refsource": "EXPLOIT-DB", "url": "http://www.exploit-db.com/exploits/30208"}, {"name": "http://www.coresecurity.com/advisories/icofx-buffer-overflow-vulnerability", "refsource": "MISC", "url": "http://www.coresecurity.com/advisories/icofx-buffer-overflow-vulnerability"}, {"name": "20131210 CORE-2013-1107 - IcoFX Buffer Overflow Vulnerability", "refsource": "FULLDISC", "url": "http://seclists.org/fulldisclosure/2013/Dec/54"}, {"name": "http://packetstormsecurity.com/files/124380/IcoFX-2.5.0.0-Buffer-Overflow.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/124380/IcoFX-2.5.0.0-Buffer-Overflow.html"}, {"name": "55964", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/55964"}, {"name": "64221", "refsource": "BID", "url": "http://www.securityfocus.com/bid/64221"}, {"name": "http://packetstormsecurity.com/files/162995/IcoFX-2.6-Buffer-Overflow.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/162995/IcoFX-2.6-Buffer-Overflow.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-4988", "datePublished": "2013-12-13T15:00:00", "dateReserved": "2013-07-29T00:00:00", "dateUpdated": "2021-06-07T15:06:10", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:icofx:icofx:*:*:*:*:*:*:*:*", "matchCriteriaId": "4A644399-B178-4C2D-B581-2F221FF89C30", "versionEndIncluding": "2.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:1.6:*:*:*:*:*:*:*", "matchCriteriaId": "94267A33-6808-4CB0-A88C-EF03BA96CF19", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:1.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "68E5004A-9972-4D12-B26E-D9DA3F003DB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:1.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "F31C6390-5303-450A-B40F-BA6113755CB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:1.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "2DF9D133-DFDD-47D8-8D1D-9C403B26D6FF", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:1.6.4:*:*:*:*:*:*:*", "matchCriteriaId": "0741A995-D610-4783-A02E-5C70E3CBA7BE", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "9F68494D-C223-4130-B788-C239D6B4DD40", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "A1B7D6B1-F722-4796-AA5B-BCF714D81038", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "C1F1A18E-14D3-4FFF-995C-C21FAEDFEF95", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:2.3:*:*:*:*:*:*:*", "matchCriteriaId": "4D37DC35-36C0-4629-B182-B27092996246", "vulnerable": true}, {"criteria": "cpe:2.3:a:icofx:icofx:2.4:*:*:*:*:*:*:*", "matchCriteriaId": "02EB38CA-40E2-44C1-A589-FFD8E72E1410", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details are obtained from third party information."}, {"lang": "es", "value": "Buffer overflow de pila en IcoFX 2.5 y anteriores permite a atacantes remotos ejecutar c\u00f3digo de forma arbitraria a trav\u00e9s de un valor idCount largo en una estructura ICONDIR en un archivo ICO.\nNOTA: Algunos de estos detalles han sido obtenidos de terceras partes."}], "id": "CVE-2013-4988", "lastModified": "2021-06-07T16:15:07.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2013-12-13T18:07:51.373", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://archives.neohapsis.com/archives/bugtraq/2013-12/0046.html"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/100826"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://packetstormsecurity.com/files/124380/IcoFX-2.5.0.0-Buffer-Overflow.html"}, {"source": "cve@mitre.org", "url": "http://packetstormsecurity.com/files/162995/IcoFX-2.6-Buffer-Overflow.html"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://seclists.org/fulldisclosure/2013/Dec/54"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/55964"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.coresecurity.com/advisories/icofx-buffer-overflow-vulnerability"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.exploit-db.com/exploits/30208"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/64221"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89611"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}