CVE-2016-5228

CRITICAL

Microfocus Rumba - Memory Corruption

Title source: rule

Description

Stack-based buffer overflow in the PlayMacro function in ObjectXMacro.ObjectXMacro in WdMacCtl.ocx in Micro Focus Rumba 9.x before 9.3 HF 11997 and 9.4.x before 9.4 HF 12815 allows remote attackers to execute arbitrary code via a long MacroName argument. NOTE: some references mention CVE-2016-5226 but that is not a correct ID for any Rumba vulnerability.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Umit Aksu · htmldoswindows

https://www.exploit-db.com/exploits/40649

View Code ZIP pw:eip

References (4)

[Various Sources] http://community.microfocus.com/microfocus/mainframe_solutions/rumba/w/knowledge_base/28600.micro-focus-rumba-9-x-security-update.aspx

[Third Party Advisory] http://www.zeroscience.mk/en/vulnerabilities/ZSL-2016-5327.php

[Issue Tracking] https://cxsecurity.com/issue/WLB-2016050136

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/40649/

Scores

CVSS v3 9.8

EPSS 0.5124

EPSS Percentile 97.9%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (1)

microfocus/rumba 9.4

Published Jul 03, 2016

Tracked Since Feb 18, 2026