Lucene search
HistoryJan 15, 2012 - 3:55 a.m.
CVE-2012-0267
cve-2012-0267
ntr activex
remote code execution
memory address
function pointer
7.6 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.925 High
EPSS
Percentile
99.0%
The StopModule method in the NTR ActiveX control before 2.0.4.8 allows remote attackers to execute arbitrary code via a crafted lModule parameter that triggers use of an arbitrary memory address as a function pointer.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ntrglobal:ntr_activex_control | ntrglobal ntr activex control | le | 1.1.8 |
Related
checkpoint_advisories
checkpoint_advisories
NTR ActiveX Control StopModule() Remote Code Execution (CVE-2012-0267)
2013-08-20 00:00:00
securityvulns
securityvulns
Secunia Research: NTR ActiveX Control "StopModule()" Input Validation Vulnerability
2012-01-21 00:00:00
NTR ActiveX security vulnerabilities
2012-01-21 00:00:00
packetstorm
packetstorm
NTR ActiveX Control StopModule() Remote Code Execution
2012-09-22 00:00:00
prion
prion
Null pointer dereference
2012-01-15 03:55:00
cvelist
cvelist
CVE-2012-0267
2012-01-15 02:00:00
nessus
nessus
NTR ActiveX Control < 2.0.4.8 Multiple Vulnerabilities
2012-01-16 00:00:00
7.6 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.925 High
EPSS
Percentile
99.0%
Related for CVE-2012-0267