CVE-2011-2089
CVE-2011-2089
Stack-based buffer overflow in the SetActiveXGUID method in the VersionInfo ActiveX control in GenVersion.dll 8.0.138.0 in the WebHMI subsystem in ICONICS BizViz 9.x before 9.22 and GENESIS32 9.x before 9.22 allows remote attackers to execute arbitrary code via a long string in the argument. NOTE: some of these details are obtained from third party information.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 4
cve_referencewww.exploit-db.com/exploits/17240não verificadocve_referencewww.exploit-db.com/exploits/17269não verificadoexploitdbwww.exploit-db.com/exploits/17269não verificadoexploitdbwww.exploit-db.com/exploits/17240não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://secunia.com/advisories/44417https://exchange.xforce.ibmcloud.com/vulnerabilities/67267http://www.exploit-db.com/exploits/17240http://www.exploit-db.com/exploits/17269http://www.osvdb.org/72135http://www.security-assessment.com/files/documents/advisory/ICONICS_WebHMI.pdfhttp://www.securityfocus.com/bid/47704http://www.us-cert.gov/control_systems/pdf/ICSA-11-131-01.pdfhttp://www.vupen.com/english/advisories/2011/1174