17 matches found
CVE-2015-8561
The F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted integer value to the 1 AttachToSS, 2 CopyAll, 3 CopyRange, 4 CopyRangeEx, or 5 SwapTable method, a...
Schneider Electric ProClima F1BookView Memory Corruption (CVE-2015-7918; CVE-2015-8561)
A memory corruption vulnerability has been reported in Schneider Electric ProClima. The vulnerability is due to a flaw in some methods of the F1BookView ActiveX control. A remote, unauthenticated attacker could exploit this vulnerability by enticing a victim user to browse to a maliciously crafte...
CVE-2015-8561
The F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted integer value to the 1 AttachToSS, 2 CopyAll, 3 CopyRange, 4 CopyRangeEx, or 5 SwapTable method, a...
Buffer overflow
Multiple buffer overflows in the F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allow remote attackers to execute arbitrary code via the 1 Attach, 2 DefinedName, 3 DefinedNameLocal, 4 ODBCPrepareEx, 5 ObjCreatePolygon, 6 SetTabbedTextEx, or 7 SetValidationRule...
CVE-2015-7918
Multiple buffer overflows in the F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allow remote attackers to execute arbitrary code via the 1 Attach, 2 DefinedName, 3 DefinedNameLocal, 4 ODBCPrepareEx, 5 ObjCreatePolygon, 6 SetTabbedTextEx, or 7 SetValidationRule...
Memory corruption
The F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted integer value to the 1 AttachToSS, 2 CopyAll, 3 CopyRange, 4 CopyRangeEx, or 5 SwapTable method, a...
CVE-2015-7918
Multiple buffer overflows in the F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allow remote attackers to execute arbitrary code via the 1 Attach, 2 DefinedName, 3 DefinedNameLocal, 4 ODBCPrepareEx, 5 ObjCreatePolygon, 6 SetTabbedTextEx, or 7 SetValidationRule...
CVE-2015-7918
The F1BookView ActiveX control in Schneider Electric ProClima before 6.2 contains multiple buffer overflows that can be triggered via the methods Attach, DefinedName, DefinedNameLocal, ODBCPrepareEx, ObjCreatePolygon, SetTabbedTextEx, and SetValidationRule, enabling remote code execution. This vu...
Schneider Electric ProClima F1BookView ActiveX Control DefinedNameLocal Method Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Schneider Electric ProClima F1BookView ActiveX Control DefinedName Method Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Schneider Electric ProClima F1BookView ActiveX Control SetValidationRule Method Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Schneider Electric ProClima F1BookView ActiveX Control CopyRange/SwapTables Methods Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaws exist within the...
Schneider Electric ProClima F1BookView ActiveX Control ODBCPrepareEx Method Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Schneider Electric ProClima F1BookView ActiveX Control SetTabbedTextEx Method Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Schneider Electric ProClima F1BookView ActiveX Control Attach Method Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Schneider Electric ProClima F1BookView ActiveX Control ObjCreatePolygon Method Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Schneider Electric ProClima F1BookView ActiveX Control AttachToSS Method Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric ProClima. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...