Lucene search

[email protected]CVE-2011-2214

HistoryMay 31, 2011 - 8:55 p.m.

CVE-2011-2214

2011-05-3120:55:05

[email protected]

web.nvd.nist.gov

cve-2011-2214

open database connectivity

odbc

7t interactive graphical scada system

igss

remote code execution

memory corruption

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.047 Low

EPSS

Percentile

92.7%

JSON

Unspecified vulnerability in the Open Database Connectivity (ODBC) component in 7T Interactive Graphical SCADA System (IGSS) before 9.0.0.11143 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 20222, which triggers memory corruption related to an “invalid structure being used.”

Affected configurations

NVD

Node

7tigssRange≤9.0.0.11129

7tigssMatch8

7tigssMatch9

CPENameOperatorVersion
7t:igss7t igssle9.0.0.11129
7t:igss7t igsseq8
7t:igss7t igsseq9

CPE	Name	Operator	Version
7t:igss	7t igss	le	9.0.0.11129
7t:igss	7t igss	eq	8
7t:igss	7t igss	eq	9

References

securityreason.com/securityalert/8265

www.securityfocus.com/archive/1/518110/100/0/threaded

www.securityfocus.com/bid/47960

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.047 Low

EPSS

Percentile

92.7%

JSON

Related for CVE-2011-2214

prion1 nvd1 cvelist1