This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Quest First view 2012-11-17
Product Intrust Last view 2012-11-17
Version Type
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:quest:intrust:10.1:*:*:*:*:*:*:* 2
cpe:2.3:a:quest:intrust:10.4:*:*:*:*:*:*:* 2
cpe:2.3:a:quest:intrust:10.3:*:*:*:*:*:*:* 2
cpe:2.3:a:quest:intrust:10.2.5:*:*:*:*:*:*:* 2

Related : CVE

  Date Alert Description
9.3 2012-11-17 CVE-2012-5897

The (1) SimpleTree and (2) ReportTree classes in the ARDoc ActiveX control (ARDoc.dll) in Quest InTrust 10.4.0.853 and earlier do not properly implement the SaveToFile method, which allows remote attackers to write or overwrite arbitrary files via the bstrFileName argument.
10 2012-11-17 CVE-2012-5896

The Annotation Objects Extension ActiveX control in AnnotateX.dll in Quest InTrust 10.4.0.853 and earlier does not properly implement the Add method, which allows remote attackers to execute arbitrary code via a memory address in the first argument, related to an "uninitialized pointer."

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-264 Permissions, Privileges, and Access Controls

Snort® IPS/IDS

Date Description
2016-03-14 Quest InTrust Annotation Objects ActiveX function call access attempt
RuleID : 36534 - Type : BROWSER-PLUGINS - Revision : 3
2016-03-14 Quest InTrust Annotation Objects ActiveX clsid access attempt
RuleID : 36533 - Type : BROWSER-PLUGINS - Revision : 3
2014-03-06 Quest InTrust Annotation Objects ActiveX function call access attempt
RuleID : 29533 - Type : BROWSER-PLUGINS - Revision : 4
2014-01-10 Quest InTrust Annotation Objects ActiveX function call access attempt
RuleID : 23396 - Type : BROWSER-PLUGINS - Revision : 8
2014-01-10 Quest InTrust Annotation Objects ActiveX clsid access attempt
RuleID : 23395 - Type : BROWSER-PLUGINS - Revision : 12