Schneider-Electric Citectscada Reports vulnerabilities

CVE-2011-4034 [CRITICAL] CWE-119 CVE-2011-4034: Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historia Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors.

CVE-2011-4036 [MEDIUM] CWE-22 CVE-2011-4036: Directory traversal vulnerability in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHist Directory traversal vulnerability in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier allows remote attackers to read arbitrary files via unspecified vectors.

CVE-2011-4033 [MEDIUM] CWE-119 CVE-2011-4033: Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historia Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier, allows remote attackers to cause a denial of service via unspecified vectors.

CVE-2011-4035 [MEDIUM] CWE-79 CVE-2011-4035: Cross-site scripting (XSS) vulnerability in Schneider Electric Vijeo Historian 4.30 and earlier, Cit Cross-site scripting (XSS) vulnerability in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.