CVE-2011-4055

Name of the Vulnerable Software and Affected Versions Siemens Tecnomatix FactoryLink versions 6.6.1 through 8.0.2.54

Description The issue is related to a buffer overflow in the WebClient ActiveX control. This can be exploited by remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL.

Recommendations For versions 6.6.1, 7.5.217, and 8.0.2.54, consider disabling the WebClient ActiveX control as a temporary workaround until a patch is available. Restrict access to the location URL parameter to minimize the risk of exploitation.