UCanCode.E-XD.Visualization.UCCSIMPLE.Remote.Code.Execution
Description
This indicates an attack attempt to exploit a Remote Code Execution vulnerability in UCanCode E-XD++ Visualization Enterprise Suite.
The vulnerability is due to improper handling of pointer references by UCCSIMPLE.UCCSIMPLECtrl.1 Control (UCCSimple.ocx). An attacker may provide a pointer to a specially crafted object which allows execution of arbitrary code, in the context of the Internet Explorer renderer process.
Affected Products
UCanCode E-XD++ Visualization Enterprise Suite Versions 25.01 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |