CVE-2011-5008

2011-12-2501:55:04

CWE-189

web.nvd.nist.gov

cve-2011-5008

integer overflow

gatewayservice

remote code execution

3s codesys 3.4 sp4 patch 2

6.8 Medium

AI Score

Confidence

Low

0.458 Medium

EPSS

Percentile

97.4%

CPENameOperatorVersion
3ssoftware:codesys3ssoftware codesyseq3.4

CPE	Name	Operator	Version
3ssoftware:codesys	3ssoftware codesys	eq	3.4

References

aluigi.altervista.org/adv/codesys_1-adv.txt

seclists.org/bugtraq/2011/Nov/178

secunia.com/advisories/47018

www.osvdb.org/77386

www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-336-01A.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/71531