Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2011-1719

EPSS 20.40% · P96
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-1719

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple stack-based buffer overflows in the Web Viewer ActiveX controls in CA Output Management Web Viewer 11.0 and 11.5 allow remote attackers to execute arbitrary code via (1) a long SRC property value to the PPSViewer ActiveX control in PPSView.ocx before 1.0.0.7 or (2) a long Title property value to the UOMWV_Helper ActiveX control in UOMWV_HelperActiveX.ocx before 11.5.0.1.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
CA Output Management Web Viewer ActiveX控件栈缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
CA Output Management Web Viewer产品可为用户访问大型主机报告内容提供了基于浏览器和基于标准的Web服务访问方式。 CA Output Management Web Viewer中存在安全漏洞,允许攻击者进行缓冲区溢出攻击。 (1)当创建电子邮件消息时,UOMWV_Helper ActiveX控件(UOMWV_HelperActiveX.ocx)中存在边界错误,远程攻击者可以借助分配给"Title"属性的超长字符串导致基于栈的缓冲区溢出。 (2)当创建debug消息串时,PPS
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2011-1719

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2011-1719

登录查看更多情报信息。

Same Patch Batch · n/a · 2011-04-27 · 26 CVEs total

CVE-2010-4798OrangeHRM index.php 'uri'目录遍历漏洞
CVE-2011-1725HP Network Automation信息泄露漏洞
CVE-2011-1718CA SiteMinder Web Agents用户假冒漏洞
CVE-2011-1599Digium Asterisk管理界面manager.c任意命令执行漏洞
CVE-2011-1587MediaWiki 跨站脚本漏洞
CVE-2011-1586KDE SC 路径遍历漏洞
CVE-2011-1580MediaWiki transwiki输入功能安全绕过漏洞
CVE-2011-1579MediaWiki维基文本解析器跨站脚本攻击漏洞
CVE-2011-1578MediaWiki跨站脚本攻击漏洞
CVE-2011-1507Digium Asterisk安全绕过和拒绝服务漏洞
CVE-2010-4801BaconMap admin/updatelist.php 'filepath'目录遍历漏洞
CVE-2010-4800BaconMap doadd.php 'type' SQL注入漏洞
CVE-2010-4799Chipmunk Pwngame多个SQL注入漏洞
CVE-2010-2787MediaWiki api.php信息泄露漏洞
CVE-2010-4797Truworth Flex Timesheet登录表单多个SQL注入漏洞
CVE-2010-4796PHPYun多个SQL注入漏洞
CVE-2010-4795Joomlaseller JS Calendar组件SQL注入漏洞
CVE-2010-4794JoomlaSeller JS Calendar组件多个跨站脚本攻击漏洞
CVE-2010-4793Site2Nite Auto e-Manager detail.asp 'ID' SQL注入漏洞
CVE-2010-4792OPEN IT OverLook title.php 'frame'跨站脚本攻击漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2011-1719

No comments yet

Leave a comment