Quest Intrust vulnerabilities
2 known vulnerabilities affecting quest/intrust.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2012-5896P2CRITICALCVSS 10.0PoC≤ 10.4.0.853v10.1+3 more2012-11-17
CVE-2012-5896 [CRITICAL] CVE-2012-5896: The Annotation Objects Extension ActiveX control in AnnotateX.dll in Quest InTrust 10.4.0.853 and ea
The Annotation Objects Extension ActiveX control in AnnotateX.dll in Quest InTrust 10.4.0.853 and earlier does not properly implement the Add method, which allows remote attackers to execute arbitrary code via a memory address in the first argument, related to an "uninitialized pointer."
nvd
CVE-2012-5897P3CRITICALCVSS 9.3PoC≤ 10.4.0.853v10.1+3 more2012-11-17
CVE-2012-5897 [CRITICAL] CWE-264 CVE-2012-5897: The (1) SimpleTree and (2) ReportTree classes in the ARDoc ActiveX control (ARDoc.dll) in Quest InTr
The (1) SimpleTree and (2) ReportTree classes in the ARDoc ActiveX control (ARDoc.dll) in Quest InTrust 10.4.0.853 and earlier do not properly implement the SaveToFile method, which allows remote attackers to write or overwrite arbitrary files via the bstrFileName argument.
nvd