CVE-2011-4870 Information

Description

Multiple buffer overflows in the (1) GUIControls (2) BatchObjSrv and (3) BatchSecCtrl ActiveX controls in Invensys Wonderware InBatch 9.0 and 9.0 SP1 and InBatch 8.1 SP1 9.0 SP2 and 9.5 Server and Runtime Clients allow remote attackers to execute arbitrary code via a long string in a property value a different issue than CVE-2011-3141.

Reference

http://www.securityfocus.com/bid/51129 http://www.us-cert.gov/control_systems/pdf/ICSA-11-332-01A.pdf