Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4043

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-4043
Last Modified 03 Apr 2012 12:00:00
Published 02 Apr 2012 11:44:35
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-4043

Summary

Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large value for an integer parameter, leading to a buffer overflow.

Vulnerable Systems

Application

  • Arcinfo Frontvue -

  • Arcinfo Pcvue 10.0

  • Arcinfo Pcvue 6.0

  • Arcinfo Pcvue 8.2

  • Arcinfo Pcvue 9.0

  • Arcinfo Plantvue -


References

MISC - http://www.us-cert.gov/control_systems/pdf/ICSA-11-340-01.pdf

CONFIRM - https://support.pcvuescada.com/index.php?option=com_k2&view=item&id=512&Itemid=440

CONFIRM - http://www.pcvuesolutions.com/index.php?option=com_content&view=article&id=244&Itemid=257


Last Updated: 27 May 2016 10:56:28