Vulnerability Details CVE-2011-5003
Stack-based buffer overflow in the Phonetic Indexer (AvidPhoneticIndexer.exe) in Avid Media Composer 5.5.3 and earlier allows remote attackers to execute arbitrary code via a long request to TCP port 4659.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.757
EPSS Ranking 98.9%
CVSS Severity
CVSS v2 Score 10.0
References
- http://secunia.com/advisories/47047
- http://www.exploit-db.com/exploits/18183
- http://www.osvdb.org/77376
- http://www.security-assessment.com/files/documents/advisory/Avid_Media_Composer-Phonetic_Indexer-Remote_Stack_Buffer_Overflow.pdf
- http://www.securityfocus.com/bid/50843
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71514
- http://secunia.com/advisories/47047
- http://www.exploit-db.com/exploits/18183
- http://www.osvdb.org/77376
- http://www.security-assessment.com/files/documents/advisory/Avid_Media_Composer-Phonetic_Indexer-Remote_Stack_Buffer_Overflow.pdf
- http://www.securityfocus.com/bid/50843
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71514
Products affected by CVE-2011-5003
-
cpe:2.3:a:avid:media_composer:*