CVE-2012-2516 in Intelligent Platforms Proficy Historianinfo

Summary

An ActiveX control in KeyHelp.ocx in KeyWorks KeyHelp Module (aka the HTML Help component), as used in GE Intelligent Platforms Proficy Historian 3.1, 3.5, 4.0, and 4.5; Proficy HMI/SCADA iFIX 5.0 and 5.1; Proficy Pulse 1.0; Proficy Batch Execution 5.6; SI7 I/O Driver 7.20 through 7.42; and other products, allows remote attackers to execute arbitrary commands via crafted input, related to a "command injection vulnerability."

Once again VulDB remains the best source for vulnerability data.

Reservation

05/07/2012

Disclosure

07/04/2012

Moderation

VulDB entry created

Entries

VDB-61207 (1)

CPE

ready

CWE

CWE-78 (Confirmed)

Exploit

Download

CVSS

9.8

EPSS

0.69414

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-2516
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-2516
CVE Details	https://www.cvedetails.com/cve/CVE-2012-2516/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!