CVE-2012-0246

Ecava IntegraXor < 3.71.4200 - Remote Code Execution via ActiveX Control

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in an unspecified ActiveX control in Ecava IntegraXor before 3.71.4200 allows remote attackers to execute arbitrary code via vectors involving an HTML document on the server.

References (4)

Core 4
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48558
US Government Resource x_refsource_misc
http://www.us-cert.gov/control_systems/pdf/ICSA-12-083-01.pdf
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/74388
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/80650

Scores

EPSS 0.0611
EPSS Percentile 92.6%

Details

CWE
CWE-22
Status published
Products (5)
ecava/integraxor 3.5.3900.5
ecava/integraxor 3.5.3900.10
ecava/integraxor 3.6.4000.0
ecava/integraxor 3.60
ecava/integraxor < 3.60.4061
Published Apr 02, 2012
Tracked Since Feb 18, 2026