Описание
Buffer overflow in TurboPower Abbrevia before 4.0, as used in ScadaTEC ScadaPhone 5.3.11.1230 and earlier, ScadaTEC ModbusTagServer 4.1.1.81 and earlier, and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ZIP file.
Ссылки
- Patch
- US Government Resource
- Patch
- US Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 3.05 (включая)Версия до 4.1.1.81 (включая)Версия до 5.3.11.1230 (включая)
Одно из
cpe:2.3:a:craig_peterson:turbopower_abbrevia:*:*:*:*:*:*:*:*
cpe:2.3:a:scadatec:modbustagserver:*:*:*:*:*:*:*:*
cpe:2.3:a:scadatec:scadaphone:*:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.74359
Высокий
6.8 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
больше 3 лет назад
Buffer overflow in TurboPower Abbrevia before 4.0, as used in ScadaTEC ScadaPhone 5.3.11.1230 and earlier, ScadaTEC ModbusTagServer 4.1.1.81 and earlier, and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ZIP file.
EPSS
Процентиль: 99%
0.74359
Высокий
6.8 Medium
CVSS2
Дефекты
CWE-119