CVE-2011-10012 HIGH

CVE-2011-10012: NetOp Remote Control Client 9.5 .dws File Buffer Overflow

Vendor Netop
Product Remote Control Client
Weakness CWE-121
Published August 13, 2025
Last update April 7, 2026

CVSS base score

8.4/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

NetOp (now part of Impero Software) Remote Control Client v9.5 is vulnerable to a stack-based buffer overflow when processing .dws configuration files. If a .dws file contains a string longer than 520 bytes, the application fails to perform proper bounds checking, allowing an attacker to execute arbitrary code when the file is opened.

Key dates

02Disclosure timeline

August 13, 2025 CVE published
April 7, 2026 Record updated