exploitDog

CVE-2011-0323

Опубликовано: 07 фев. 2011

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions before 4.29, allows remote attackers to execute arbitrary code by calling the exposed unsafe (1) SetLogFilePath and (2) SigMessage methods to create arbitrary files with arbitrary content.

Ссылки

http://secunia.com/advisories/42800
Vendor Advisory
http://secunia.com/secunia_research/2011-1/
Vendor Advisory
http://www.securityfocus.com/bid/46128
https://exchange.xforce.ibmcloud.com/vulnerabilities/65117
http://secunia.com/advisories/42800
Vendor Advisory
http://secunia.com/secunia_research/2011-1/
Vendor Advisory
http://www.securityfocus.com/bid/46128
https://exchange.xforce.ibmcloud.com/vulnerabilities/65117

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:topazsystems:sigplus_pro_activex_control:3.95:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.02006

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-475c-78rh-rffp

github

больше 3 лет назад

Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions before 4.29, allows remote attackers to execute arbitrary code by calling the exposed unsafe (1) SetLogFilePath and (2) SigMessage methods to create arbitrary files with arbitrary content.

EPSS

Процентиль: 83%

0.02006

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other