Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2013-3075

Published: 19/04/2013 Updated: 15/05/2013
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Mitsubishi Mx Component

Vulnerability Summary

Multiple buffer overflows in ActUWzd.dll 1.0.0.1 in Mitsubishi MX Component 3, as distributed in Citect CitectFacilities 7.10 and CitectScada 7.10r1, allow remote malicious users to execute arbitrary code via a long string, as demonstrated by a long WzTitle property value to a certain ActiveX control.

Vulnerable Product Search on Vulmon Subscribe to Product

mitsubishi-automation mitsubishi mx component 3

schneider-electric citectfacilities 7.10

schneider-electric citectscada 7.10

Exploits

Exploit DB: Mitsubishi MX ActiveX Component 3 - 'ActUWzd.dll' 'WzTitle' Remote Heap Spray
<!-- Title: Mitsubishi MX Component v3 ActiveX 365+-Day [ActUWzddll (WzTitle)] By: Dr_IDE File: C:\MELSEC\Act\Control\ActUWzddll (Version 1001) Known Affected Systems: CitectScada 710r1 ships with this in the "Extras" folder Known Affected Systems: CitectFacilities 710 ships with this in the "Extras" folder I am unsure as to what other ...

References

CWE-119http://www.exploit-db.com/exploits/24886/https://nvd.nist.govhttps://www.exploit-db.com/exploits/24886/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761command injectionCVE-2024-3676IDORCVE-2024-30039CVE-2024-32113CVE-2024-30049CVE-2024-4776SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook