Lucene search

K
cveMitreCVE-2010-2931
HistoryAug 05, 2010 - 1:23 p.m.

CVE-2010-2931

2010-08-0513:23:09
CWE-119
mitre
web.nvd.nist.gov
43
buffer overflow
sigplus pro
activex
cve-2010-2931
security vulnerability

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.2

Confidence

Low

EPSS

0.138

Percentile

95.7%

Stack-based buffer overflow in SigPlus Pro 3.74 ActiveX control allows remote attackers to execute arbitrary code via a long eighth argument (HexString) to the LCDWriteString method.

Affected configurations

Nvd
Node
topazsystemssigplus_pro_activex_controlMatch3.74
VendorProductVersionCPE
topazsystemssigplus_pro_activex_control3.74cpe:2.3:a:topazsystems:sigplus_pro_activex_control:3.74:*:*:*:*:*:*:*

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.2

Confidence

Low

EPSS

0.138

Percentile

95.7%