CVE-2012-2515

Name of the Vulnerable Software and Affected Versions KeyHelp.ocx version 1.2.312 EMC Documentum ApplicationXtender Desktop version 5.4 EMC Captiva Quickscan Pro version 4.6 SP1 GE Intelligent Platforms Proficy Historian versions 3.1 through 4.5 GE Intelligent Platforms Proficy HMI/SCADA iFIX versions 5.0 through 5.1 GE Intelligent Platforms Proficy Pulse version 1.0 GE Intelligent Platforms Proficy Batch Execution version 5.6 GE Intelligent Platforms SI7 I/O Driver versions 7.20 through 7.42

Description The issue is related to multiple stack-based buffer overflows in the KeyHelp.KeyCtrl.1 ActiveX control. This can be exploited by remote attackers to execute arbitrary code via a long string in the second argument to the JumpMappedID or JumpURL method.

Recommendations For KeyHelp.ocx version 1.2.312, consider disabling the JumpMappedID and JumpURL methods until a patch is available. For EMC Documentum ApplicationXtender Desktop version 5.4, restrict access to the affected ActiveX control to minimize the risk of exploitation. For EMC Captiva Quickscan Pro version 4.6 SP1, avoid using the JumpMappedID and JumpURL methods in the affected ActiveX control until the issue is resolved. For GE Intelligent Platforms Proficy Historian versions 3.1 through 4.5, temporarily disable the use of the KeyHelp.ocx ActiveX control. For GE Intelligent Platforms Proficy HMI/SCADA iFIX versions 5.0 through 5.1, consider applying configuration changes to restrict access to the vulnerable component. For GE Intelligent Platforms Proficy Pulse version 1.0, restrict access to the affected module to minimize the risk of exploitation. For GE Intelligent Platforms Proficy Batch Execution version 5.6, avoid using the vulnerable function until the issue is resolved. For GE Intelligent Platforms SI7 I/O Driver versions 7.20 through 7.42, consider disabling the affected ActiveX control until a patch is available.