Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1719

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-1719
Last Modified 21 Sep 2011 11:30:46
Published 26 Apr 2011 09:25:33
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1719

Summary

Multiple stack-based buffer overflows in the Web Viewer ActiveX controls in CA Output Management Web Viewer 11.0 and 11.5 allow remote attackers to execute arbitrary code via (1) a long SRC property value to the PPSViewer ActiveX control in PPSView.ocx before 1.0.0.7 or (2) a long Title property value to the UOMWV_Helper ActiveX control in UOMWV_HelperActiveX.ocx before 11.5.0.1.

Vulnerable Systems

Application

  • Ca Output Management Web Viewer 11.0

  • Ca Output Management Web Viewer 11.5


References

CONFIRM - https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID={DED5B724-B500-46DA-A855-B2AF457B5364}

XF - ca-output-ppsviewer-bo(66904)

XF - ca-output-uomwvhelper-bo(66903)

VUPEN - ADV-2011-1066

BID - 47521

BUGTRAQ - 20110421 CA20110420-02: Security Notice for CA Output Management Web Viewer

SECTRACK - 1025424

SREASON - 8226

MISC - http://secunia.com/secunia_research/2011-35/

MISC - http://secunia.com/secunia_research/2011-34/

SECUNIA - 43681


Last Updated: 27 May 2016 10:56:24