Untrusted Pointer Dereference Vulnerability in VisiWave Site Survey

Untrusted Pointer Dereference Vulnerability in VisiWave Site Survey

CVE-2011-2386 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site Survey before 2.1.9 allows user-assisted remote attackers to execute arbitrary code via a (1) vws and (2) vwr file with an invalid Type property, which triggers an untrusted pointer dereference.

Learn more about our User Device Pen Test.