CVE-2011-5172

Powerproduction Storyboard Quick - Memory Corruption

Title source: rule

Description

Stack-based buffer overflow in StoryBoard Quick 6 Build 3786, and possibly StoryBoard Artist and StoryBoard Studio, allows remote attackers to execute arbitrary code via a long string in the string element field in a frame xml file.

Exploits (1)

exploitdb WORKING POC

by Nick Freeman · rubylocalwindows

https://www.exploit-db.com/exploits/18186

View Code ZIP pw:eip

References (4)

[Exploit] http://www.exploit-db.com/exploits/18186

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/71574

[Vendor Advisory] http://www.security-assessment.com/files/documents/advisory/Storyboard_Quick6-Stack_Buffer_Overflow.pdf

[Vendor Advisory] http://secunia.com/advisories/47045

Scores

EPSS 0.4049

EPSS Percentile 97.4%

Details

CWE

CWE-119

Status published

Products (1)

powerproduction/storyboard_quick 6.0

Published Sep 15, 2012

Tracked Since Feb 18, 2026