CVE-2011-4043

ARC Informatique PcVue 6.0-10.0 FrontVue and PlantVue - Remote Code Execution via Integer Overflow in SVUIGrd.ocx

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-4043.

AI-analyzed exploit summary This is a detailed technical analysis of multiple vulnerabilities in PcVue SCADA software, including code execution, memory corruption, and array overflow issues in ActiveX components. The writeup provides disassembly snippets and exploitation details but does not include functional exploit code.

Description

Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to execute arbitrary code via a large value for an integer parameter, leading to a buffer overflow.

Exploits (1)

exploitdb WRITEUP
doswindows
https://www.exploit-db.com/exploits/17896

This is a detailed technical analysis of multiple vulnerabilities in PcVue SCADA software, including code execution, memory corruption, and array overflow issues in ActiveX components. The writeup provides disassembly snippets and exploitation details but does not include functional exploit code.

Classification
Writeup 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: PcVue <= 10.0, SVUIGrd.ocx <= 1.5.1.0, aipgctl.ocx <= 1.07.3702
No auth needed
Prerequisites: Network access to vulnerable PcVue installation · ActiveX controls exposed to attacker
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Scores

EPSS 0.0744
EPSS Percentile 93.7%

Details

CWE
CWE-189
Status published
Products (6)
arcinfo/frontvue
arcinfo/pcvue 6.0
arcinfo/pcvue 8.2
arcinfo/pcvue 9.0
arcinfo/pcvue 10.0
arcinfo/plantvue
Published Apr 03, 2012
Tracked Since Feb 18, 2026