SAINT CorporationSAINT:71426B1819FBB2CC8973369FF261827CTom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.958 High
EPSS
Percentile
99.4%
Added: 06/19/2011
CVE: CVE-2011-2217
BID: 48099
Background
Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools.
Problem
Certain ActiveX controls in **tsgetxu71ex552.dll** and **tsgetx71ex552.dll** in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client (VMware Infrastructure Client) 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted initialization within Internet Explorer. A remote attacker could execute arbitrary code or cause a denial of service (memory corruption) by enticing a user to open a specially crafted HTML document in Internet Explorer.
Resolution
Upgrade or apply patches as described in VMware Security Advisory 2011-0009.
References
<http://secunia.com/advisories/44826/>
Limitations
Exploit works on VMware VI Client 2.0.2.61426.
The user must open the exploit file in Internet Explorer 7 on the target system.
Platforms
Windows
Related
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.958 High
EPSS
Percentile
99.4%