Vulnerability in Arcinfo Frontvue

CVE-2011-4043

Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large value for an integer parameter, leading to a…

EPSS: 0.363 (97.2th percentile) — read the EPSS interpretation.

Affected products

Arcinfo Frontvue
Arcinfo Pcvue — versions 6.0, 8.2, 9.0
Arcinfo Plantvue
N/a — versions n/a

Weakness classification (CWE)

CWE-189

References

cret@cert.org (US Government Resource, x_refsource_MISC)
cret@cert.org (x_refsource_CONFIRM, Vendor Advisory)
cret@cert.org (x_refsource_CONFIRM)