Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions before 4.29, allows remote attackers to execute arbitrary code by calling the exposed unsafe (1) SetLogFilePath and (2) SigMessage methods to create arbitrary files with arbitrary content.
References
Link | Resource |
---|---|
http://secunia.com/advisories/42800 | Vendor Advisory |
http://secunia.com/secunia_research/2011-1/ | Vendor Advisory |
http://www.securityfocus.com/bid/46128 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/65117 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: flexera
Published: 2011-02-07T20:19:00
Updated: 2017-08-16T14:57:01
Reserved: 2011-01-06T00:00:00
Link: CVE-2011-0323
JSON object: View
NVD Information
Status : Modified
Published: 2011-02-07T21:00:14.680
Modified: 2017-08-17T01:33:26.837
Link: CVE-2011-0323
JSON object: View
Redhat Information
No data.
CWE