CVE-2011-4056

Published: Jan 8, 2012Modified: Apr 29, 2026

5.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Exploitability: 8.6 / Impact: 4.9

Source: NVD

Description

An unspecified ActiveX control in ActBar.ocx in Siemens Tecnomatix FactoryLink 6.6.1 (aka 6.6 SP1), 7.5.217 (aka 7.5 SP2), and 8.0.2.54 allows remote attackers to create or overwrite arbitrary files via the save method.

Affected (3)

Products: Siemens: Tecnomatix Factorylink

Siemens

1 product

Tecnomatix Factorylink

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Siemens Tecnomatix Factorylink	Version 6.6.1
Siemens Tecnomatix Factorylink	Version 7.5.217
Siemens Tecnomatix Factorylink	Version 8.0.2.54

References (4)

http://www.us-cert.gov/control_systems/pdf/ICSA-11-343-01.pdf

Source: cret@cert.org

US Government Resource

http://www.usdata.com/sea/factorylink/en/p_nav5.asp

Source: cret@cert.org

PatchVendor Advisory

http://www.us-cert.gov/control_systems/pdf/ICSA-11-343-01.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.usdata.com/sea/factorylink/en/p_nav5.asp

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.