ActiveX Control Code Execution Vulnerability in GENESIS32 by ICONICS
CVE-2011-5088

Currently unrated

Key Information:

Vendor: Iconics
Status: Genesis32; Bizviz
Vendor: CVE Published:; 18 April 2012

What is CVE-2011-5088?

The IcoSetServer ActiveX control in ICONICS GENESIS32 and BizViz versions 9.21 allows remote attackers to manipulate the trusted zone settings based on user input. By exploiting this vulnerability through a carefully crafted website, attackers can execute arbitrary code on the affected systems. This presents a significant risk, as it could lead to unauthorized access or control of the affected systems.

References

http://www.us-cert.gov/control_systems/pdf/ICSA-11-182-01...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 18, 2012

Iconics

What is CVE-2011-5088?

References

Timeline