Lucene search

[email protected]CVE-2012-0246

HistoryApr 02, 2012 - 10:46 a.m.

CVE-2012-0246

2012-04-0210:46:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2012-0246

directory traversal

vulnerability

activex control

remote code execution

ecava integraxor

7.8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.048 Low

EPSS

Percentile

92.7%

JSON

Directory traversal vulnerability in an unspecified ActiveX control in Ecava IntegraXor before 3.71.4200 allows remote attackers to execute arbitrary code via vectors involving an HTML document on the server.

CPENameOperatorVersion
ecava:integraxorecava integraxoreq3.5.3900.10
ecava:integraxorecava integraxoreq3.5.3900.5
ecava:integraxorecava integraxoreq3.60
ecava:integraxorecava integraxorle3.60.4061
ecava:integraxorecava integraxoreq3.6.4000.0

CPE	Name	Operator	Version
ecava:integraxor	ecava integraxor	eq	3.5.3900.10
ecava:integraxor	ecava integraxor	eq	3.5.3900.5
ecava:integraxor	ecava integraxor	eq	3.60
ecava:integraxor	ecava integraxor	le	3.60.4061
ecava:integraxor	ecava integraxor	eq	3.6.4000.0

References

osvdb.org/80650

secunia.com/advisories/48558

www.us-cert.gov/control_systems/pdf/ICSA-12-083-01.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/74388

7.8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.048 Low

EPSS

Percentile

92.7%

JSON

Related for CVE-2012-0246

ics1 prion1 cvelist1