CVE-2015-1007 in PAC Project Professionalinformación

Resumen

por MITRE

A specially crafted configuration file could be used to cause a stack-based buffer overflow condition in the OPCTest.exe, which may allow remote code execution on Opto 22 PAC Project Professional versions prior to R9.4008, PAC Project Basic versions prior to R9.4008, PAC Display Basic versions prior to R9.4g, PAC Display Professional versions prior to R9.4g, OptoOPCServer version R9.4c and prior that were installed by PAC Project installer, versions prior to R9.4008, and OptoDataLink version R9.4d and prior that were installed by PAC Project installer, versions prior to R9.4008. Opto 22 suggests upgrading to the new product version as soon as possible.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

2015-01-10

Moderación

aceptado

Artículo

VDB-132166

CPE

listo

CWE

CWE-119 (confirmado)

CVSS

7.8 (NVD)

EPSS

0.01025

KEV

Actividades

muy bajo

Sector

Finance, Government, ...

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-1007
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-1007
CVE Details	https://www.cvedetails.com/cve/CVE-2015-1007/

◂ Anterior Visión De Conjunto Próximo ▸

Do you need the next level of professionalism?

Upgrade your account now!