Published: 16/09/2011 Updated: 20/06/2012

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

WinSig.exe in eSignal 10.6.2425 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long StyleTemplate element in a QUO, SUM or POR file, which triggers a stack-based buffer overflow, or (2) a long Font->FaceName field (aka FaceName element), which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
interactivedata esignal 10.6
interactivedata esignal

## # $Id: esignal_styletemplate_bofrb 13765 2011-09-20 17:39:53Z sinn3r $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/c ...

####################################################################### Luigi Auriemma Application: eSignal and eSignal Pro wwwesignalcom/esignal/defaultaspx Versions: <= 10624251208 Platforms: Windows Bugs: A] code execution B] heap overflow Exploitation: fi ...

CWE-119 http://aluigi.altervista.org/adv/esignal_1-adv.txt http://secunia.com/advisories/45966 https://nvd.nist.gov https://www.exploit-db.com/exploits/17880/

CVE-2011-3494

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect