CVE-2017-2155

HIGH

Hoozin Viewer <6.0.3.09 - Buffer Overflow

Title source: llm
STIX 2.1

Description

Buffer overflow in Hoozin Viewer 2, 3, 4.1.5.15 and earlier, 5.1.2.13 and earlier, and 6.0.3.09 and earlier allows remote attackers to execute arbitrary code via specially crafted webpage.

References (2)

Core 2
Core References
Patch, Vendor Advisory x_refsource_misc
http://www.icon-co.jp/news/20170420/index.html
Third Party Advisory, VDB Entry third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN93931029/index.html

Scores

CVSS v3 8.8
EPSS 0.0255
EPSS Percentile 83.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (8)
i.con_corporation/hoozin_viewer 2
i.con_corporation/hoozin_viewer 3
i.con_corporation/hoozin_viewer < 4.1.5.15
ICON CORPORATION/Hoozin Viewer Ver2
ICON CORPORATION/Hoozin Viewer Ver3
ICON CORPORATION/Hoozin Viewer Ver4.1.5.15 and earlier
ICON CORPORATION/Hoozin Viewer Ver5.1.2.13 and earlier
ICON CORPORATION/Hoozin Viewer Ver6.0.3.09 and earlier
Published Apr 28, 2017
Tracked Since Feb 18, 2026