Arbitrary Code Execution via Crafted HTML Document in ARC Informatique PcVue, FrontVue, and PlantVue

Arbitrary Code Execution via Crafted HTML Document in ARC Informatique PcVue, FrontVue, and PlantVue

CVE-2011-4042 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code by using a crafted HTML document to obtain control of a function pointer.

Learn more about our Web Application Penetration Testing UK.