2 matches found
CVE-2011-3494
WinSig.exe in eSignal 10.6.2425 and earlier is affected by CVE-2011-3494. The vulnerability allows a remote attacker to crash the application and possibly execute arbitrary code via a long StyleTemplate element in QUO/SUM/POR files (stack-based buffer overflow) or a long Font->FaceName field (...
CVE-2011-3503
CVE-2011-3503 describes an untrusted search path vulnerability in eSignal 10.6.2425.1208 (and possibly other versions), where local/possibly remote attackers could cause arbitrary code execution through a Trojan horse JRS_UT.dll placed in the same directory as a .quo file. The affected component ...