ActiveX Control Vulnerability in ARC Informatique's PcVue and FrontVue Products
CVE-2011-4044

Currently unrated

Key Information:

Vendor

Arcinfo

Status
Pcvue
Frontvue
Plantvue
Vendor
CVE Published:
3 April 2012

What is CVE-2011-4044?

An unspecified vulnerability in the ActiveX control SVUIGrd.ocx present in ARC Informatique's PcVue 6.0 to 10.0, as well as in FrontVue and PlantVue, could be exploited by remote attackers. This security flaw allows the unauthorized modification of files through calls to undocumented methods, potentially leading to significant security risks for users relying on these products.

References

http://www.us-cert.gov/control_systems/pdf/ICSA-11-340-01...
x_refsource_MISC
http://www.pcvuesolutions.com/index.php?option=com_conten...
x_refsource_CONFIRM
https://support.pcvuescada.com/index.php?option=com_k2&vi...
x_refsource_CONFIRM

EPSS Score

61% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.