Vulnerabilities > CVE-2013-5023 - Unspecified vulnerability in NI products

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

NVD

Published: 2013-08-06

Updated: 2013-09-25

Summary

The ActiveX controls in the HelpAsst component in NI Help Links in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allow remote attackers to cause a denial of service by triggering the display of local .chm files.

Vulnerable Configurations

Part	Description	Count
Application	Ni NI Diadem - NI Diadem 2012 NI Labview - NI Labview 2012 NI Labwindows - NI Labwindows 8.5 NI Labwindows 9.0 NI Labwindows 2009 NI Labwindows 2010 NI Labwindows 2012 NI Measurementstudio - NI Measurementstudio 2013 NI Teststand - NI Teststand 2012	14

References

http://digital.ni.com/public.nsf/allkb/E6BC4F119D49A97A86257BD3004FE019?OpenDocument
http://digital.ni.com/public.nsf/websearch/507DEC9DA57A708186257B3600512623?OpenDocument
http://digital.ni.com/public.nsf/websearch/5C87A3AA7300868986257B3600501FE6?OpenDocument