Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2590

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-2590
Last Modified 02 Aug 2012 12:00:00
Published 09 Aug 2011 06:55:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-2590

Summary

The Play method in the UUPlayer ActiveX control 6.0.0.1 in UUSee 2010 6.11.0609.2 allows remote attackers to execute arbitrary programs via a UNC share pathname in the MPlayerPath parameter.

Vulnerable Systems

Application

  • Uusee 2010 6.11.0609.2

  • Uusee Uuplayer Activex Control 6.0.0.1


References

XF - uusee-play-code-execution(68975)

BID - 48975

OSVDB - 74217

MISC - http://secunia.com/secunia_research/2011-59/

SECUNIA - 44885


Last Updated: 27 May 2016 10:57:02