Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2092

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2015-2092
Last Modified 10 Mar 2015 01:51:29
Published 09 Mar 2015 10:59:10
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-2092

Summary

The AnnotationX.AnnList.1 ActiveX control in Agilent Technologies Feature Extraction allows remote attackers to execute arbitrary code via a crafted object parameter in the Insert function, related to "Index Out-Of-Bounds."

Vulnerable Systems

Application

  • Agilent Technologies Feature Extraction -


References

MISC - http://www.zerodayinitiative.com/advisories/ZDI-15-053/


Last Updated: 27 May 2016 11:08:00