PT-2012-2067 · Iconics · Bizviz+1

Published

2012-04-18

Updated

2017-08-29

CVE-2011-5089

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions ICONICS GENESIS32 versions 8.05 through 9.2 BizViz versions 8.05 through 9.2

Description A buffer overflow issue exists in the Security Login ActiveX controls, potentially allowing remote attackers to cause a denial of service or possibly execute arbitrary code by providing a long password.

Recommendations For ICONICS GENESIS32 versions 8.05 through 9.2, consider disabling the Security Login ActiveX controls until a patch is available. For BizViz versions 8.05 through 9.2, restrict access to the Security Login ActiveX controls to minimize the risk of exploitation.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2011-5089

Affected Products

Bizviz

Iconics Genesis32

PT-2012-2067 · Iconics · Bizviz+1

CVE-2011-5089

Weakness Enumeration

Related Identifiers

Affected Products

References · 3