Ni Measurementstudio vulnerabilities

CVE-2013-5022 [CRITICAL] CWE-22 CVE-2013-5022: Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National In Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allows remote attackers to create and execute arbitrary files via a full pathname in an argument to the ExportStyle method, in conjunction with file content

CVE-2013-5021 [CRITICAL] CWE-22 CVE-2013-5021: Multiple absolute path traversal vulnerabilities in National Instruments cwui.ocx, as used in Nation Multiple absolute path traversal vulnerabilities in National Instruments cwui.ocx, as used in National Instruments LabWindows/CVI 2012 SP1 and earlier, National Instruments LabVIEW 2012 SP1 and earlier, the Data Analysis component in ABB DataManager 1 through 6.3.6, and other products allow remote attackers to create and execute arbitrary files via a

CVE-2013-5024 [MEDIUM] CVE-2013-5024: An ActiveX control in NationalInstruments.Help2.dll in National Instruments NI .NET Class Library He An ActiveX control in NationalInstruments.Help2.dll in National Instruments NI .NET Class Library Help, as used in Measurement Studio 2013 and earlier and other products, allows remote attackers to obtain sensitive information about the existence of registry keys via crafted (1) key-open or (2) key-close method calls.

CVE-2013-5023 [MEDIUM] CVE-2013-5023: The ActiveX controls in the HelpAsst component in NI Help Links in National Instruments LabWindows/C The ActiveX controls in the HelpAsst component in NI Help Links in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allow remote attackers to cause a denial of service by triggering the display of local .chm files.