Описание
Multiple buffer overflows in the (1) GUIControls, (2) BatchObjSrv, and (3) BatchSecCtrl ActiveX controls in Invensys Wonderware InBatch 9.0 and 9.0 SP1, and InBatch 8.1 SP1, 9.0 SP2, and 9.5 Server and Runtime Clients, allow remote attackers to execute arbitrary code via a long string in a property value, a different issue than CVE-2011-3141.
Ссылки
- US Government Resource
- US Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:invensys:wonderware_inbatch:8.1:sp1:*:*:*:*:*:*
cpe:2.3:a:invensys:wonderware_inbatch:9.0:*:*:*:*:*:*:*
cpe:2.3:a:invensys:wonderware_inbatch:9.0:sp1:*:*:*:*:*:*
cpe:2.3:a:invensys:wonderware_inbatch:9.0:sp2:*:*:*:*:*:*
cpe:2.3:a:invensys:wonderware_inbatch:9.5:*:*:*:*:*:*:*
EPSS
Процентиль: 82%
0.01703
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
больше 3 лет назад
Multiple buffer overflows in the (1) GUIControls, (2) BatchObjSrv, and (3) BatchSecCtrl ActiveX controls in Invensys Wonderware InBatch 9.0 and 9.0 SP1, and InBatch 8.1 SP1, 9.0 SP2, and 9.5 Server and Runtime Clients, allow remote attackers to execute arbitrary code via a long string in a property value, a different issue than CVE-2011-3141.
EPSS
Процентиль: 82%
0.01703
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-119