CVE-2011-4044

ARC Informatique PcVue <10.0 - RCE

Title source: llm

Description

An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to modify files via calls to unknown methods.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17975

View Code ZIP pw:eip

exploitdb WRITEUP

doswindows

https://www.exploit-db.com/exploits/17896

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Luigi Auriemma · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/pcvue_func.rb

View Code ZIP pw:eip

References (3)

[Vendor Advisory] http://www.pcvuesolutions.com/index.php?option=com_content&view=article&id=244&Itemid=257

[US Government Resource] http://www.us-cert.gov/control_systems/pdf/ICSA-11-340-01.pdf

[Various Sources] https://support.pcvuescada.com/index.php?option=com_k2&view=item&id=512&Itemid=440

Scores

EPSS 0.6186

EPSS Percentile 98.3%

Details

Status published

Products (6)

arcinfo/frontvue

arcinfo/pcvue 6.0

arcinfo/pcvue 8.2

arcinfo/pcvue 9.0

arcinfo/pcvue 10.0

arcinfo/plantvue

Published Apr 03, 2012

Tracked Since Feb 18, 2026