This script is Copyright (C) 2008-2015 Tenable Network Security, Inc.
The remote Windows host has a browser plugin that is affected by a
buffer overflow vulnerability.
The Windows remote host contains IBM's AFP Viewer plug-in, which
allows for viewing AFP (Advanced Function Presentation) documents from
a web browser.
The version of the plug-in installed on the remote host reportedly
contains a heap-based buffer overflow that can be triggered when
processing a 'SRC' property with a string longer than 1023 characters.
If an attacker can trick a user on the affected host into visiting a
specially crafted web page, this issue could be leveraged to execute
arbitrary code on the affected system subject to the user's
See also :
Upgrade to AFP Viewer plug-in version 22.214.171.124 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false