Lucene search

K
cve[email protected]CVE-2011-4043
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-4043

2022-10-0316:15:14
CWE-189
web.nvd.nist.gov
113
cve-2011-4043
integer overflow
activex control
svuigrd.ocx
arc informatique
pcvue
frontvue
plantvue
remote code execution
buffer overflow
nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.6%

Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large value for an integer parameter, leading to a buffer overflow.

Affected configurations

NVD
Node
arcinfofrontvueMatch-
OR
arcinfopcvueMatch6.0
OR
arcinfopcvueMatch8.2
OR
arcinfopcvueMatch9.0
OR
arcinfopcvueMatch10.0
OR
arcinfoplantvueMatch-

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.6%