September 27, 2011 (updated December 6, 2011)

Independent researcher Kuang-Chun Hung of Security Research and Service Institute Information and Communication Security Technology Center (ICST) privately identified a buffer overflow vulnerability in ARC Informatique's PcVue application.

Independent researcher Luigi Auriemma publicly disclosed four vulnerabilities along with proof-of-concept (PoC) exploit code, including the vulnerability privately disclosed by ICST.

The PcVue ActiveX control is prone to multiple vulnerabilities, including potential to write memory, possible file corruption, remote code execution, and denial of service.

Successfully exploiting these issues allows remote attackers to create or overwrite arbitrary local files and execute arbitrary code. Failed exploit attempts may result in a denial-of-service condition.

According to ARC Informatique the following products are affected:
-  PcVue - All versions from 6.xx onward
-  FrontVue - All versions
-  PlantVue - All versions

ICSA-11-340-01
ICS-ALERT-11-271-01

Vendor Homepage
Product Info
Security Alert
Security Bulletin with Patch (Requires Login)

Metasploit Framework (windows/browser/pcvue_func)
Exploit-DB ID 17975
Exploit-DB ID 17896
Security Focus Proof of Concept
Luigi Auriemma Proof of Concept

CVE-2011-4042  (Arbitrary Code Execution)
NVD CVE-2011-4042
CVE-2011-4043  (Buffer Oveflow)
NVD CVE-2011-4043
CVE-2011-4044  (Data Corruption)
NVD CVE-2011-4044
CVE-2011-4045  (Buffer Overflow)
NVD CVE-2011-4045

Disclosure (Luigi Auriemma)
Exploit-DB ID 17896
Open-Source Vulnerability Database #75793
Open-Source Vulnerability Database #75794
Security Focus Vulnerability Info and Exploit Bugtraq ID 49795
Microsoft Knowledgebase Article ID 240797

PcVue Works to Patch Vulnerabilities (ISSSource)
PoC Holes from SCADA Providers (ISSSource)