CVE-2011-4055 Information

Description

Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 (aka 6.6 SP1) 7.5.217 (aka 7.5 SP2) and 8.0.2.54 allows remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL.

Reference

http://www.securityfocus.com/bid/51266 http://www.us-cert.gov/control_systems/pdf/ICSA-11-343-01.pdf http://www.usdata.com/sea/factorylink/en/p_nav5.asp https://exchange.xforce.ibmcloud.com/vulnerabilities/72117