CVE-2012-4359 in Winlog Proinformazioni

Riassunto

di MITRE

Sielco Sistemi Winlog Pro SCADA before 2.07.18 and Winlog Lite SCADA before 2.07.18 do not validate the return value of the realloc function, which allows remote attackers to cause a denial of service (invalid 0x00 write operation and daemon crash) or possibly have unspecified other impact via a port-46824 TCP packet with a crafted negative integer after the opcode. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-4358.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

19/08/2012

Divulgazione

19/08/2012

Moderazione

accettato

Voce

VDB-61693

CPE

pronto

CWE

CWE-20 (confermato)

CVSS

9.8 (VulDB)

EPSS

0.01677

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4359
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4359
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4359/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!