Lucene search

PRIOn knowledge basePRION:CVE-2011-2089

HistoryMay 13, 2011 - 5:05 p.m.

Stack overflow

2011-05-1317:05:00

PRIOn knowledge base

www.prio-n.com

8.7 High

AI Score

Confidence

Low

0.508 Medium

EPSS

Percentile

97.5%

JSON

Stack-based buffer overflow in the SetActiveXGUID method in the VersionInfo ActiveX control in GenVersion.dll 8.0.138.0 in the WebHMI subsystem in ICONICS BizViz 9.x before 9.22 and GENESIS32 9.x before 9.22 allows remote attackers to execute arbitrary code via a long string in the argument. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
bizvizeq9.0
bizvizeq9.2
bizvizeq9.20
bizvizeq9.01
bizvizeq9.1
bizvizeq9.21
bizvizeq9.13
genesis32eq9.0
genesis32eq9.20
genesis32eq9.21

Name	Operator	Version
bizviz	eq	9.0
bizviz	eq	9.2
bizviz	eq	9.20
bizviz	eq	9.01
bizviz	eq	9.1
bizviz	eq	9.21
bizviz	eq	9.13
genesis32	eq	9.0
genesis32	eq	9.20
genesis32	eq	9.21

Rows per page:

1-10 of 141

References

secunia.com/advisories/44417

www.osvdb.org/72135

www.security-assessment.com/files/documents/advisory/ICONICS_WebHMI.pdf

www.securityfocus.com/bid/47704

www.us-cert.gov/control_systems/pdf/ICSA-11-131-01.pdf

www.vupen.com/english/advisories/2011/1174

exchange.xforce.ibmcloud.com/vulnerabilities/67267

www.exploit-db.com/exploits/17240

www.exploit-db.com/exploits/17269