CVE-2011-4034

Name of the Vulnerable Software and Affected Versions Steema TeeChart ActiveX control (affected versions not specified) Schneider Electric Vijeo Historian versions 4.30 and earlier CitectHistorian versions 4.30 and earlier CitectSCADAReports versions 4.10 and earlier

Description The issue is related to a buffer overflow in the Steema TeeChart ActiveX control. This control is used in various products, including Schneider Electric Vijeo Historian, CitectHistorian, and CitectSCADAReports. The buffer overflow can be exploited by remote attackers to execute arbitrary code or cause a denial of service. The exact vectors used for the exploitation are not specified.

Recommendations For Schneider Electric Vijeo Historian versions 4.30 and earlier, update to a version later than 4.30. For CitectHistorian versions 4.30 and earlier, update to a version later than 4.30. For CitectSCADAReports versions 4.10 and earlier, update to a version later than 4.10. As a temporary workaround, consider disabling the Steema TeeChart ActiveX control until a patch is available.