ID:3772 - Exploit for Buffer overflow in IP Office Contact Center - CVE-2017-12969

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:3772 - Exploit for Buffer overflow in IP Office Contact Center - CVE-2017-12969

ID:3772 - Exploit for Buffer overflow in IP Office Contact Center - CVE-2017-12969

Published: August 9, 2020


Vulnerability identifier: #VU37987
Vulnerability risk: High
CVE-ID: CVE-2017-12969
CWE-ID: CWE-119
Exploitation vector: Remote access
Vulnerable software:
IP Office Contact Center

Link to public exploit:


Vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Buffer overflow in the ViewerCtrlLib.ViewerCtrl ActiveX control in Avaya IP Office Contact Center before 10.1.1 allows remote attackers to cause a denial of service (heap corruption and crash) or execute arbitrary code via a long string to the open method.


Remediation

Install update from vendor's website.