CVE-2011-4044 - An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue,

CVE-2011-4044

Summary

An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to modify files via calls to unknown methods.

References

Vulnerable Configurations

cpe:2.3:a:arcinfo:frontvue:-:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:frontvue:-:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:pcvue:6.0:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:pcvue:6.0:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:pcvue:8.2:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:pcvue:8.2:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:pcvue:9.0:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:pcvue:9.0:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:pcvue:10.0:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:pcvue:10.0:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:plantvue:-:*:*:*:*:*:*:*
cpe:2.3:a:arcinfo:plantvue:-:*:*:*:*:*:*:*

CVSS

Base:	5.8 (as of 03-04-2012 - 04:00)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:P/A:P

refmap via4

confirm	http://www.pcvuesolutions.com/index.php?option=com_content&view=article&id=244&Itemid=257 https://support.pcvuescada.com/index.php?option=com_k2&view=item&id=512&Itemid=440
misc	http://www.us-cert.gov/control_systems/pdf/ICSA-11-340-01.pdf

Last major update

03-04-2012 - 04:00

Published

03-04-2012 - 03:44

Last modified

03-04-2012 - 04:00