Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-s8hz-vjz3-v7ck
Summary
Aliases
0
alias CVE-2011-2089
Fixed_packages
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-2089
reference_id
reference_type
scores
0
value 0.74625
scoring_system epss
scoring_elements 0.98878
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-2089
1
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17240.html
reference_id CVE-2011-2089;OSVDB-72135
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17240.html
2
reference_url http://www.security-assessment.com/files/documents/advisory/ICONICS_WebHMI.pdf
reference_id CVE-2011-2089;OSVDB-72135
reference_type exploit
scores
url http://www.security-assessment.com/files/documents/advisory/ICONICS_WebHMI.pdf
3
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17269.rb
reference_id OSVDB-72135;CVE-2011-2089
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17269.rb
Weaknesses
Exploits
0
date_added null
description 
This module exploits a vulnerability found in ICONICS WebHMI's ActiveX control.
          By supplying a long string of data to the 'SetActiveXGUID' parameter, GenVersion.dll
          fails to do any proper bounds checking before this input is copied onto the stack,
          which causes a buffer overflow, and results arbitrary code execution under the context
          of the user.
required_action null
due_date null
notes 
Reliability:
  - unknown-reliability
Stability:
  - unknown-stability
SideEffects:
  - unknown-side-effects
known_ransomware_campaign_use false
source_date_published 2011-05-05
exploit_type null
platform Windows
source_date_updated null
data_source Metasploit
source_url https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/windows/scada/iconics_webhmi_setactivexguid.rb
1
date_added 2011-05-03
description ICONICS WebHMI - ActiveX Stack Overflow
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2011-05-03
exploit_type remote
platform windows
source_date_updated 2011-05-04
data_source Exploit-DB
source_url http://www.security-assessment.com/files/documents/advisory/ICONICS_WebHMI.pdf
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-s8hz-vjz3-v7ck