CVE-2016-1606

Name of the Vulnerable Software and Affected Versions Micro Focus Rumba versions 9.4.x before 9.4 HF 13960

Description The issue is caused by multiple stack-based buffer overflows in COM objects, allowing remote attackers to execute arbitrary code. This can be achieved through various means, including the NetworkName property value to ObjectXSNAConfig.ObjectXSNAConfig in iconfig.dll, the CPName property value to ObjectXSNAConfig.ObjectXSNAConfig in iconfig.dll, the PrinterName property value to ProfileEditor.PrintPasteControl in ProfEdit.dll, the Data argument to the WriteRecords function in FTXBIFFLib.AS400FtxBIFF in FtxBIFF.dll, the Serialized property value to NMSECCOMPARAMSLib.SSL3 in NMSecComParams.dll, the UserName property value to NMSECCOMPARAMSLib.FirewallProxy in NMSecComParams.dll, the LUName property value to ProfileEditor.MFSNAControl in ProfEdit.dll, the newVal argument to the Load function in FTPSFTPLib.SFtpSession in FTPSFtp.dll, or a long Host field in the FTP Client.

Recommendations For Micro Focus Rumba versions 9.4.x before 9.4 HF 13960, update to version 9.4 HF 13960 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable COM objects and functions, such as ObjectXSNAConfig.ObjectXSNAConfig, ProfileEditor.PrintPasteControl, FTXBIFFLib.AS400FtxBIFF, NMSECCOMPARAMSLib.SSL3, NMSECCOMPARAMSLib.FirewallProxy, ProfileEditor.MFSNAControl, and FTPSFTPLib.SFtpSession, until a patch is applied. Additionally, avoid using long values for the Host field in the FTP Client and be cautious when providing input for the NetworkName, CPName, PrinterName, Data, Serialized, UserName, LUName, and newVal properties.