3 matches found
CVE-2015-8561
The F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted integer value to the 1 AttachToSS, 2 CopyAll, 3 CopyRange, 4 CopyRangeEx, or 5 SwapTable method, a...
Schneider Electric ProClima F1BookView Memory Corruption (CVE-2015-7918; CVE-2015-8561)
A memory corruption vulnerability has been reported in Schneider Electric ProClima. The vulnerability is due to a flaw in some methods of the F1BookView ActiveX control. A remote, unauthenticated attacker could exploit this vulnerability by enticing a victim user to browse to a maliciously crafte...
Buffer overflow
Multiple buffer overflows in the F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allow remote attackers to execute arbitrary code via the 1 Attach, 2 DefinedName, 3 DefinedNameLocal, 4 ODBCPrepareEx, 5 ObjCreatePolygon, 6 SetTabbedTextEx, or 7 SetValidationRule...