CVE-2011-4055

Currently unrated

Key Information:

Vendor: Siemens
Status: Tecnomatix Factorylink
Vendor: CVE Published:; 8 January 2012

Summary

Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 (aka 6.6 SP1), 7.5.217 (aka 7.5 SP2), and 8.0.2.54 allows remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL.

References

http://www.us-cert.gov/control_systems/pdf/ICSA-11-343-01...

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/72117

vdb-entryx_refsource_XF

http://www.usdata.com/sea/factorylink/en/p_nav5.asp

x_refsource_CONFIRM

Timeline

Vulnerability published
Jan 8, 2012
Vulnerability Reserved
Oct 13, 2011