exploitDog

CVE-2011-4530

Опубликовано: 08 янв. 2012

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 does not properly copy fields obtained from clients, which allows remote attackers to cause a denial of service (exception and daemon crash) via long fields, as demonstrated by fields to the (1) open_session->workstation->NAME or (2) grant->VERSION function.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:siemens:automation_license_manager:*:sp1:*:*:*:*:*:*

Версия до 5.1 (включая)

EPSS

Процентиль: 94%

0.14944

Средний

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-9wc8-4g2q-8xv5

github

больше 3 лет назад

Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 does not properly copy fields obtained from clients, which allows remote attackers to cause a denial of service (exception and daemon crash) via long fields, as demonstrated by fields to the (1) open_session->workstation->NAME or (2) grant->VERSION function.

EPSS

Процентиль: 94%

0.14944

Средний

5 Medium

CVSS2

Дефекты

CWE-20