ID
VAR-E-201109-0367
CVE
| cve_id: | CVE-2011-0342 | Trust: 0.3 |
sources:
BID: 49403
TITLE
InduSoft ISSymbol ActiveX Control 'ISSymbol.ocx' Multiple Buffer Overflow Vulnerabilities
Trust: 0.3
sources:
BID: 49403
DESCRIPTION
The InduSoft ISSymbol ActiveX control is prone to multiple buffer-overflow vulnerabilities.
Attackers could exploit these issues to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts will likely result in denial-of-service conditions.
Trust: 0.3
sources:
BID: 49403
AFFECTED PRODUCTS
| vendor: | indusoft | model: | web studio 7.0b2 hotfix | scope: | eq | version: | 7.0.01. | Trust: 0.3 |
| vendor: | indusoft | model: | issymbol activex control | scope: | eq | version: | 301.1104.601.0 | Trust: 0.3 |
sources:
BID: 49403
EXPLOIT
Reports indicate exploit code is available.
Trust: 0.3
sources:
BID: 49403
PRICE
Free
Trust: 0.3
sources:
BID: 49403
TYPE
Boundary Condition Error
Trust: 0.3
sources:
BID: 49403
CREDITS
Dmitriy Pletnev, Secunia Research.
Trust: 0.3
sources:
BID: 49403
EXTERNAL IDS
| db: | ICS CERT | id: | ICSA-11-273-02 | Trust: 0.3 |
| db: | NVD | id: | CVE-2011-0342 | Trust: 0.3 |
| db: | BID | id: | 49403 | Trust: 0.3 |
sources:
BID: 49403
REFERENCES
| url: | http://secunia.com/secunia_research/2011-61/ | Trust: 0.3 |
| url: | http://www.indusoft.com/ | Trust: 0.3 |
| url: | http://www.us-cert.gov/control_systems/pdf/icsa-11-273-02.pdf | Trust: 0.3 |
| url: | http://www.indusoft.com/hotfixes/hotfixes.php | Trust: 0.3 |
sources:
BID: 49403
SOURCES
| db: | BID | id: | 49403 |
LAST UPDATE DATE
2022-07-27T09:43:05.676000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 49403 | date: | 2011-09-30T22:50:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 49403 | date: | 2011-09-01T00:00:00 |