Workbench32/WebHMI Component SetTrustedZone Policy Vulnerability in GENESIS32 9.21 and BizViz 9.21

Workbench32/WebHMI Component SetTrustedZone Policy Vulnerability in GENESIS32 9.21 and BizViz 9.21

CVE-2011-5088 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The GENESIS32 IcoSetServer ActiveX control in ICONICS GENESIS32 9.21 and BizViz 9.21 configures the trusted zone on the basis of user input, which allows remote attackers to execute arbitrary code via a crafted web site, related to a "Workbench32/WebHMI component SetTrustedZone Policy vulnerability."

Learn more about our Web App Pen Testing.