CVE-2011-3503

Untrusted search path vulnerability in eSignal 10.6.2425.1208, and possibly other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse JRS_UT.dll that is located in the same folder as a .quo (QUOTE) file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Published: Sep 16, 2011
Updated: Apr 13, 2023
CVE: CVE-2011-3503
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
interactivedata / esignal	10.6.2425.1208	10.6.2425.1208.x

http://osvdb.org/75458
http://secunia.com/advisories/45966
https://exchange.xforce.ibmcloud.com/vulnerabilities/69786

Vulnerability Database

291,049

CVE-2011-3503