Test ID:	1.3.6.1.4.1.25623.1.0.902370
Category:	Buffer overflow
Title:	Advantech Studio Multiple Buffer Overflow Vulnerabilities
Summary:	Advantech Studio is prone to multiple buffer overflow vulnerabilities.
Description:	Summary: Advantech Studio is prone to multiple buffer overflow vulnerabilities. Vulnerability Insight: The flaw exists due to a buffer overflow error in the ISSymbol ActiveX control (ISSymbol.ocx) when processing an overly long 'InternationalOrder', 'InternationalSeparator', 'bstrFileName' or 'LogFileName' property, which could be exploited by attackers to execute arbitrary code by tricking a user into visiting a specially crafted web page. Vulnerability Impact: Successful exploitation will allow remote attackers to execute arbitrary code. Affected Software/OS: Advantech Advantech Studio 6.1 SP6 Build 61.6.0 Solution: Upgrade to hotfix 7.0.01.04 or higher. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0340 BugTraq ID: 47596 http://www.securityfocus.com/bid/47596 http://ics-cert.us-cert.gov/advisories/ICSA-12-249-03 http://secunia.com/secunia_research/2011-36/ http://secunia.com/secunia_research/2011-37/ http://www.us-cert.gov/control_systems/pdf/ICSA-12-137-02.pdf http://secunia.com/advisories/42928 http://secunia.com/advisories/43116 http://www.vupen.com/english/advisories/2011/1115 http://www.vupen.com/english/advisories/2011/1116
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.