VYPR
Unrated severityNVD Advisory· Published May 22, 2006· Updated Jun 16, 2026

CVE-2006-2511

CVE-2006-2511

Description

The ActiveX version of FrontRange iHEAT allows remote authenticated users to run arbitrary programs or access arbitrary files on the host machine by uploading a file with an extension that is not associated with an application, and selecting a file from the "Open With..." dialog.

Affected products

2
  • Frontrange/Iheat2 versions
    cpe:2.3:a:frontrange:iheat:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:frontrange:iheat:*:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.