Описание
Buffer overflow in the lm_tcp service in Invensys Wonderware InBatch 8.1 and 9.0, as used in Invensys Foxboro I/A Series Batch 8.1 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted request to port 9001.
Ссылки
- Exploit
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- US Government Resource
- US Government Resource
- Vendor Advisory
- Exploit
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- US Government Resource
- US Government Resource
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:invensys:wonderware_inbatch:8.1:*:*:*:*:*:*:*
cpe:2.3:a:invensys:wonderware_inbatch:9.0:*:*:*:*:*:*:*
cpe:2.3:a:invensys:foxboro_i\/a_series_batch:8.1:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.45054
Средний
10 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
больше 3 лет назад
Buffer overflow in the lm_tcp service in Invensys Wonderware InBatch 8.1 and 9.0, as used in Invensys Foxboro I/A Series Batch 8.1 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted request to port 9001.
EPSS
Процентиль: 97%
0.45054
Средний
10 Critical
CVSS2
Дефекты
CWE-119