CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-0323

Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions before 4.29, allows remote attackers to execute arbitrary code by calling the exposed unsafe (1) SetLogFilePath and (2) SigMessage methods to create arbitrary files with arbitrary content.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.02

EPSS Ranking 82.9%

CVSS Severity

CVSS v2 Score 9.3

References

http://secunia.com/advisories/42800
http://secunia.com/secunia_research/2011-1/
http://www.securityfocus.com/bid/46128
https://exchange.xforce.ibmcloud.com/vulnerabilities/65117
http://secunia.com/advisories/42800
http://secunia.com/secunia_research/2011-1/
http://www.securityfocus.com/bid/46128
https://exchange.xforce.ibmcloud.com/vulnerabilities/65117

Products affected by CVE-2011-0323

Topazsystems » Sigplus Pro Activex Control » Version: 3.95

cpe:2.3:a:topazsystems:sigplus_pro_activex_control:3.95

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-0323

Products

Pricing

Contact Us