PT-2013-5337 · National Instruments · National Instruments Lookout

Published

2013-08-06

Updated

2013-09-18

CVE-2013-5026

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions National Instruments Lookout versions 6.5 through 6.7

Description The issue allows remote attackers to execute arbitrary code by triggering the download of, and calls to, an arbitrary DLL file through an ActiveX control in certain ocx files.

Recommendations For versions 6.5 through 6.7, consider disabling the ActiveX control in lookout650.ocx, lookout660.ocx, and lookout670.ocx to prevent exploitation until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2013-5026

Affected Products

National Instruments Lookout

PT-2013-5337 · National Instruments · National Instruments Lookout

CVE-2013-5026

Related Identifiers

Affected Products

References · 4