CVE-2012-0246
published 2012-04-02CVE-2012-0246: Directory traversal vulnerability in an unspecified ActiveX control in Ecava IntegraXor before 3.71.4200 allows remote attackers to execute arbitrary code via…
PriorityP351critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
6.11%
92.5th percentile
Directory traversal vulnerability in an unspecified ActiveX control in Ecava IntegraXor before 3.71.4200 allows remote attackers to execute arbitrary code via vectors involving an HTML document on the server.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ecava | integraxor | <= 3.60.4061 | — |
| ecava | integraxor | — | — |
| ecava | integraxor | — | — |
| ecava | integraxor | — | — |
| ecava | integraxor | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Ecava IntegraXor ActiveX Directory Traversal
cisa_ics·2018-09-06
Ecava IntegraXor ActiveX Directory Traversal
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Ecava IntegraXor ActiveX Directory Traversal
Last RevisedSeptember 06, 2018
Alert CodeICSA-12-083-01
## Overview
Independent researchers Billy Rios and Terry McCorkle have identified a Path Traversal vulnerability in the Ecava IntegraXor application. Ecava has produced an update that mitigates this vulnerability. The researchers have validated that the patch fixes this vulnerability.
## Affected Products
According to Ecava, the following products are affected:
- IntegraXor versions older than Version 3.71.4200
## Impact
Successful exploitation of this vulnerability may resu
GHSA
GHSA-wc5c-49v2-q26f: Directory traversal vulnerability in an unspecified ActiveX control in Ecava IntegraXor before 3
ghsa_unreviewed·2022-05-04
CVE-2012-0246 [HIGH] CWE-22 GHSA-wc5c-49v2-q26f: Directory traversal vulnerability in an unspecified ActiveX control in Ecava IntegraXor before 3
Directory traversal vulnerability in an unspecified ActiveX control in Ecava IntegraXor before 3.71.4200 allows remote attackers to execute arbitrary code via vectors involving an HTML document on the server.
No detection rules found.
No public exploits indexed.
http://osvdb.org/80650http://secunia.com/advisories/48558http://www.us-cert.gov/control_systems/pdf/ICSA-12-083-01.pdfhttps://exchange.xforce.ibmcloud.com/vulnerabilities/74388http://osvdb.org/80650http://secunia.com/advisories/48558http://www.us-cert.gov/control_systems/pdf/ICSA-12-083-01.pdfhttps://exchange.xforce.ibmcloud.com/vulnerabilities/74388
2012-04-02
Published