Progress Database JvmStart Format String Vulnerability

Progress Database JvmStart Format String Vulnerability

Progress is a commercial database for Microsoft Windows and Unix systems. jvmStart is a program included in Progress Database to start Java Virtual Machine.

An input validation error exists in jvmStart that makes it prone to format string attacks. This issue may allow a local attacker to execute arbitrary code on the host.

This situation could be leveraged by the attacker to gain elevated privileges.