Lucene search

[email protected]CVE-2011-2959

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-2959

2022-10-0316:15:16

CWE-119

[email protected]

web.nvd.nist.gov

cve

2011-2959

open database connectivity

odbc

buffer overflow

denial of service

remote attack

7-technologies

igss

scada

tcp port 22202

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

JSON

Stack-based buffer overflow in the Open Database Connectivity (ODBC) service (Odbcixv9se.exe) in 7-Technologies Interactive Graphical SCADA System (IGSS) 9 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet to TCP port 22202.

Affected configurations

NVD

Node

7tigssRange≤9

7tigssMatch2.0

7tigssMatch3.0

7tigssMatch4.1

7tigssMatch5.0

7tigssMatch5.1

7tigssMatch6

7tigssMatch7

7tigssMatch8

CPENameOperatorVersion
7t:igss7t igssle9
7t:igss7t igsseq2.0
7t:igss7t igsseq3.0
7t:igss7t igsseq4.1
7t:igss7t igsseq5.0
7t:igss7t igsseq5.1
7t:igss7t igsseq6
7t:igss7t igsseq7
7t:igss7t igsseq8

CPE	Name	Operator	Version
7t:igss	7t igss	le	9
7t:igss	7t igss	eq	2.0
7t:igss	7t igss	eq	3.0
7t:igss	7t igss	eq	4.1
7t:igss	7t igss	eq	5.0
7t:igss	7t igss	eq	5.1
7t:igss	7t igss	eq	6
7t:igss	7t igss	eq	7
7t:igss	7t igss	eq	8

References

secunia.com/advisories/44345

www.insomniasec.com/advisories/ISVA-110427.1.htm

www.osvdb.org/72117

www.us-cert.gov/control_systems/pdf/ICSA-11-119-01.pdf

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

JSON

Related for CVE-2011-2959

openvas2 prion1 cvelist1 nvd1