Remote Information Disclosure Vulnerability in National Instruments Help Library
CVE-2013-5024

Currently unrated

Key Information:

Vendor: Ni
Status: Measurementstudio
Vendor: CVE Published:; 6 August 2013

What is CVE-2013-5024?

The ActiveX control in the National Instruments NI .NET Class Library Help, specifically within the NationalInstruments.Help2.dll file, presents a vulnerability that enables remote attackers to potentially gain unauthorized access to sensitive information. This can be achieved through specifically crafted method calls involving the key-open or key-close functions, leading to the exposure of critical registry key information. This vulnerability affects various versions of Measurement Studio and poses risks in environments utilizing these applications.

References

http://digital.ni.com/public.nsf/websearch/D8E97E95D59AC1...

x_refsource_CONFIRM

http://digital.ni.com/public.nsf/allkb/548965C170D6AA2586...

x_refsource_CONFIRM

http://digital.ni.com/public.nsf/websearch/507DEC9DA57A70...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2013
Vulnerability Reserved
Jul 31, 2013

Ni

What is CVE-2013-5024?

References

Timeline