Lucene search
HistoryFeb 07, 2011 - 9:00 p.m.
CVE-2011-0323
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
Low
EPSS
0.02
Percentile
89.1%
Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions before 4.29, allows remote attackers to execute arbitrary code by calling the exposed unsafe (1) SetLogFilePath and (2) SigMessage methods to create arbitrary files with arbitrary content.
Affected configurations
Node
topazsystemssigplus_pro_activex_controlMatch3.95
| Vendor | Product | Version | CPE |
|---|---|---|---|
| topazsystems | sigplus_pro_activex_control | 3.95 | cpe:2.3:a:topazsystems:sigplus_pro_activex_control:3.95:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2011-0323
2011-02-07 20:19:00
cve
cve
CVE-2011-0323
2011-02-07 21:00:14
prion
prion
Code injection
2011-02-07 21:00:00
openvas
openvas
Topaz Systems SigPlus Pro ActiveX Control Multiple Vulnerabilities
2011-03-04 00:00:00
Topaz Systems SigPlus Pro ActiveX Control Multiple Vulnerabilities
2011-03-04 00:00:00
nessus
nessus
SigPlus Pro ActiveX Control < 4.29 Multiple Vulnerabilities
2011-02-07 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
Low
EPSS
0.02
Percentile
89.1%
Related for NVD:CVE-2011-0323