Lucene search

CVE-2011-4044

🗓️ 03 Apr 2012 03:36:44Reported by certccType

cve🔗 web.nvd.nist.gov👁 134 Views🌐 WEB

Unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2011-4044	3 Apr 201201:00	–	cvelist
NVD	CVE-2011-4044	3 Apr 201203:44	–	nvd
Metasploit	PcVue 10.0 SV.UIGrdCtrl.1 'LoadObject()/SaveObject()' Trusted DWORD Vulnerability	12 Oct 201110:57	–	metasploit
Prion	Design/Logic Flaw	3 Apr 201203:44	–	prion
Kaspersky	KLA10292 Multiple vulnerabilities in PcVue	2 Apr 201200:00	–	kaspersky
Check Point Advisories	ARC PcVue ActiveX Control SCADA Remote Code Execution (CVE-2011-4042; CVE-2011-4043 ; CVE-2011-4044; CVE-2011-4045)	12 Nov 201300:00	–	checkpoint_advisories
seebug.org	Arc Informatique产品多个ActiveX控件漏洞	16 Dec 201100:00	–	seebug

Nvd

Node

arcinfo frontvueMatch-

arcinfo pcvueMatch6.0

arcinfo pcvueMatch8.2

arcinfo pcvueMatch9.0

arcinfo pcvueMatch10.0

arcinfo plantvueMatch-

Source	Link
pcvuesolutions	www.pcvuesolutions.com/index.php
us-cert	www.us-cert.gov/control_systems/pdf/ICSA-11-340-01.pdf
support	www.support.pcvuescada.com/index.php

Parameter	Position	Path	Description	CWE
SaveObject	nested	/path/to/VULNERABLE/endpoint	Exploitation of function pointer control in SVUIGrd.ocx allowing arbitrary code execution.	CWE-94, CWE-20
LoadObject	nested	/path/to/VULNERABLE/endpoint	Exploitation of function pointer control in SVUIGrd.ocx allowing arbitrary code execution.	CWE-94, CWE-20

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Apr 2012 03:44Current

6.8Medium risk

Vulners AI Score6.8

CVSS25.8

EPSS0.61857