Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3503

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-3503
Last Modified 23 Sep 2011 12:00:00
Published 16 Sep 2011 01:26:15
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-3503

Summary

Untrusted search path vulnerability in eSignal 10.6.2425.1208, and possibly other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse JRS_UT.dll that is located in the same folder as a .quo (QUOTE) file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems

Application

  • Interactivedata Esignal 10.6.2425.1208


References

XF - esignal-dll-code-execution(69786)

SECUNIA - 45966

OSVDB - 75458


Last Updated: 27 May 2016 10:57:43