CVE-2011-4043

2012-04-03 05:44:35 2012-04-03 06:00:00

Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large value for an integer parameter, leading to a buffer overflow.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Arcinfo Frontvue - (not an official CPE) Arcinfo Pcvue 10.0 (not an official CPE) Arcinfo Pcvue 6.0 (not an official CPE) Arcinfo Plantvue - (not an official CPE) Arcinfo Pcvue 8.2 (not an official CPE) Arcinfo Pcvue 9.0 (not an official CPE)

Arcinfo - Frontvue Arcinfo - Pcvue Arcinfo - Plantvue

Advisory	Patch	Confirmed	Link
			http://www.us-cert.gov/control_systems/pdf/ICSA-11-340-0...
			https://support.pcvuescada.com/index.php?option=com_k2&v...
			http://www.pcvuesolutions.com/index.php?option=com_conte...

CVE-2011-4043

2012-04-03 05:44:35 2012-04-03 06:00:00

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)