 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2011-0340 |
| Description: | Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 301.1009.2904.0 in the ISSymbol virtual machine, as distributed in Advantech Studio 6.1 SP6 61.6.01.05, InduSoft Web Studio before 7.0+SP1, and InduSoft Thin Client 7.0, allow remote attackers to execute arbitrary code via a long (1) InternationalOrder, (2) InternationalSeparator, or (3) LogFileName property value; or (4) a long bstrFileName argument to the OpenScreen method. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.902370 1.3.6.1.4.1.25623.1.0.902376 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2011-0340 BugTraq ID: 47596 http://www.securityfocus.com/bid/47596 http://ics-cert.us-cert.gov/advisories/ICSA-12-249-03 http://secunia.com/secunia_research/2011-36/ http://secunia.com/secunia_research/2011-37/ http://www.us-cert.gov/control_systems/pdf/ICSA-12-137-02.pdf http://secunia.com/advisories/42928 http://secunia.com/advisories/43116 http://www.vupen.com/english/advisories/2011/1115 http://www.vupen.com/english/advisories/2011/1116 |