CVE-2013-6029
Published Dec 4, 2013
Last updated 8 years ago
Overview
- Description
- Stack-based buffer overflow in the AT&T Connect Participant Application before 9.5.51 on Windows allows remote attackers to execute arbitrary code via a malformed .SVT file.
- Source
- cret@cert.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:att:connect_participant_application:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B91319E5-BFC7-4BCC-9D4C-AC3FCB68EADB",
"versionEndIncluding": "9.5.0"
},
{
"criteria": "cpe:2.3:a:att:connect_participant_application:8.5.71:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "79FAABE3-55C3-4C17-917F-1B2DA26B60AE"
},
{
"criteria": "cpe:2.3:a:att:connect_participant_application:8.9.35:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC407D5B-D97D-4FCA-9123-C8923D045DE8"
},
{
"criteria": "cpe:2.3:a:att:connect_participant_application:9.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9506C593-2D59-4975-B327-CCFCF834A0E1"
},
{
"criteria": "cpe:2.3:a:att:connect_participant_application:9.0.82:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C153E4A3-B676-40BE-ADEC-F6AF2ADBC338"
},
{
"criteria": "cpe:2.3:a:att:connect_participant_application:9.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2F9139E8-02F8-4E62-BF50-A747B65CE692"
},
{
"criteria": "cpe:2.3:a:att:connect_participant_application:9.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4D0A257D-D840-4ADE-BDBD-B3E3A6B8FB1B"
},
{
"criteria": "cpe:2.3:a:att:connect_participant_application:9.3.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0EC079ED-2AF2-45C3-AA9B-A64D8D35DE12"
}
],
"operator": "OR"
}
]
}
]