CVE-2012-3008

Sažetak

Stack-based buffer overflow in OSIsoft PI OPC DA Interface before 2.3.20.9 allows remote authenticated users to execute arbitrary code by sending packet data during the processing of messages associated with OPC items.

Reference

http://osvdb.org/84091
http://secunia.com/advisories/49986
http://www.securityfocus.com/bid/54609
http://www.us-cert.gov/control_systems/pdf/ICSA-12-201-01.pdf
https://exchange.xforce.ibmcloud.com/vulnerabilities/77131

CVSS

Base:	8.5
Impact:	10.0
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

22-12-2017 - 02:29

Objavljeno

20-07-2012 - 10:40