What is CVE-2011-0340?

CVE-2011-0340 is a vulnerability in Advantech Advantech_studio, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-05-04.

Is CVE-2011-0340 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Advantech Advantech_studio

CVE-2011-0340

Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 301.1009.2904.0 in the ISSymbol virtual machine, as distributed in Advantech Studio 6.1 SP6 61.6.01.05, InduSoft Web Studio before 7.0+SP1, and InduSoft…

Vulnerability class: Buffer Overflow

EPSS: 0.449 (97.7th percentile) — read the EPSS interpretation.

Affected products

Advantech Advantech_studio — versions 6.1
Indusoft Thin_client — versions 7.0
Indusoft Web_studio — versions 6.1
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

rapid7/metasploit-framework

References

43116 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
47596 (vdb-entry, x_refsource_BID)
PSIRT-CNA@flexerasoftware.com (x_refsource_MISC, Vendor Advisory)
ADV-2011-1116 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
PSIRT-CNA@flexerasoftware.com (x_refsource_MISC)
42928 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
PSIRT-CNA@flexerasoftware.com (x_refsource_MISC)
ADV-2011-1115 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
PSIRT-CNA@flexerasoftware.com (x_refsource_CONFIRM)
PSIRT-CNA@flexerasoftware.com (x_refsource_MISC, Vendor Advisory)

Frequently asked questions

What is CVE-2011-0340?: CVE-2011-0340 is a vulnerability in Advantech Advantech_studio, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-05-04.
Is CVE-2011-0340 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.