Test ID:	1.3.6.1.4.1.25623.1.0.800528
Category:	Buffer overflow
Title:	BreakPoint Software, Hex Workshop Buffer Overflow vulnerability
Summary:	Hex Workshop is prone to a stack-based buffer overflow vulnerability.
Description:	Summary: Hex Workshop is prone to a stack-based buffer overflow vulnerability. Vulnerability Insight: Application fails to adequately sanitize user input data, which in turn leads to boundary error while processing of Intel .hex files. Vulnerability Impact: Successful exploitation could allow remote attacker to execute arbitrary code and can cause denial-of-service. Affected Software/OS: BreakPoint Software, Hex Workshop version 6.0.1.4603 and prior on Windows. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0812 BugTraq ID: 33932 http://www.securityfocus.com/bid/33932 Bugtraq: 20090227 Hex Workshop <= v6 (.hex) File Local Code (Google Search) http://www.securityfocus.com/archive/1/501300/100/0/threaded https://www.exploit-db.com/exploits/8121 http://www.exploit-db.com/exploits/9550 http://secunia.com/advisories/34021 XForce ISS Database: hexworkshop-hex-bo(48970) https://exchange.xforce.ibmcloud.com/vulnerabilities/48970
Copyright	Copyright (C) 2009 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.