CVE-2012-0246

critical

Description

Directory traversal vulnerability in an unspecified ActiveX control in Ecava IntegraXor before 3.71.4200 allows remote attackers to execute arbitrary code via vectors involving an HTML document on the server.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/74388

http://www.us-cert.gov/control_systems/pdf/ICSA-12-083-01.pdf

http://secunia.com/advisories/48558

http://osvdb.org/80650

Details

Source: Mitre, NVD

Published: 2012-04-02

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical