CVE-2011-3488

Equis MetaStock <11 - RCE

Title source: llm

Description

Use-after-free vulnerability in Equis MetaStock 11 and earlier allows remote attackers to execute arbitrary code via a malformed (1) mwc chart, (2) mws chart, (3) mwt template, or (4) mwl layout.

Exploits (1)

exploitdb WRITEUP

by Luigi Auriemma · textdoswindows

https://www.exploit-db.com/exploits/17836

View Code ZIP pw:eip

References (1)

Core 1

Core References

Third Party Advisory x_refsource_misc

http://aluigi.altervista.org/adv/metastock_1-adv.txt

Scores

EPSS 0.1494

EPSS Percentile 94.6%

Details

CWE

CWE-399

Status published

Products (7)

equis/metastock 8.0

equis/metastock 9.0

equis/metastock 9.1

equis/metastock 9.2

equis/metastock 10.0

equis/metastock 10.1

equis/metastock < 11.0

Published Sep 16, 2011

Tracked Since Feb 18, 2026