CVE-2017-5176 in Automation Connected Components Workbenchinfo

Zusammenfassung

von MITRE

A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (CCW). The following versions are affected: Connected Components Workbench - Developer Edition, v9.01.00 and earlier: 9328-CCWDEVENE, 9328-CCWDEVZHE, 9328-CCWDEVFRE, 9328-CCWDEVITE, 9328-CCWDEVDEE, 9328-CCWDEVESE, and 9328-CCWDEVPTE; and Connected Components Workbench - Free Standard Edition (All Supported Languages), v9.01.00 and earlier. Certain DLLs included with versions of CCW software can be potentially hijacked to allow an attacker to gain rights to a victim's affected personal computer. Such access rights can be at the same or potentially higher level of privileges as the compromised user account, including and up to computer administrator privileges.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

03.01.2017

Veröffentlichung

18.05.2017

Moderieren

akzeptiert

Eintrag

VDB-101494

CPE

bereit

EPSS

0.00004

KEV

nein

Aktivitäten

very low

Sektor

Pharma, Government, ...

Quellen

MITREhttps://www.cve.org/CVERecord?id=CVE-2017-5176
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2017-5176
CVE Detailshttps://www.cvedetails.com/cve/CVE-2017-5176/

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!