PT-2012-2067 · Iconics · Bizviz+1

Publicado

2012-04-18

Atualizado

2017-08-29

CVE-2011-5089

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions ICONICS GENESIS32 versions 8.05 through 9.2 BizViz versions 8.05 through 9.2

Description A buffer overflow issue exists in the Security Login ActiveX controls, potentially allowing remote attackers to cause a denial of service or possibly execute arbitrary code by providing a long password.

Recommendations For ICONICS GENESIS32 versions 8.05 through 9.2, consider disabling the Security Login ActiveX controls until a patch is available. For BizViz versions 8.05 through 9.2, restrict access to the Security Login ActiveX controls to minimize the risk of exploitation.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2011-5089

Produtos afetados

Bizviz

Iconics Genesis32

PT-2012-2067 · Iconics · Bizviz+1

CVE-2011-5089

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3