VYPR
Unrated severityNVD Advisory· Published May 12, 2010· Updated Jun 16, 2026

CVE-2010-1911

CVE-2010-1911

Description

The site-locking implementation in the SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance relies on a list of server domain names to restrict execution of ActiveX controls, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a DNS hijacking attack.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • cpe:2.3:a:consona:consona_dynamic_agent:-:-:enterprise:*:*:*:*:*+ 3 more
    • cpe:2.3:a:consona:consona_dynamic_agent:-:-:enterprise:*:*:*:*:*
    • cpe:2.3:a:consona:consona_dynamic_agent:-:-:marketing:*:*:*:*:*
    • cpe:2.3:a:consona:consona_dynamic_agent:-:-:support:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:a:consona:consona_live_assistance:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:consona:consona_live_assistance:*:*:*:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:a:consona:consona_subscriber_assistance:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:consona:consona_subscriber_assistance:*:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.