Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3494

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-3494
Last Modified 20 Jun 2012 12:00:00
Published 16 Sep 2011 10:28:13
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-3494

Summary

WinSig.exe in eSignal 10.6.2425 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long StyleTemplate element in a QUO, SUM or POR file, which triggers a stack-based buffer overflow, or (2) a long Font->FaceName field (aka FaceName element), which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Interactivedata Esignal 10.6

  • Interactivedata Esignal 10.6.2425


References

SECUNIA - 45966

MISC - http://aluigi.altervista.org/adv/esignal_1-adv.txt


Last Updated: 27 May 2016 10:57:43