NVD

Id
10113  
Name
CVE-2011-3494  
Description
WinSig.exe in eSignal 10.6.2425 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long StyleTemplate element in a QUO, SUM or POR file, which triggers a stack-based buffer overflow, or (2) a long Font->FaceName field (aka FaceName element), which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2011-09-16  
Modified Date
2012-06-20  
Seq
2011-3494  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
57921 10113 CVE-2011-3494 http://aluigi.altervista.org/adv/esignal_1-adv.txt  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
32039 JVNDB-2011-002279 eSignal の WinSig.exe におけるサービス運用妨害 (クラッシュ) の脆弱性 eSignal の WinSig.exe には、サービス運用妨害 (クラッシュ) 状態となる、または任意のコードを実行される脆弱性が存在します。 CVE-2011-3494 51401 CVE-2011-3494 10113 10 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002279.html 2011-09-16 2011-09-30 View