Lucene search
CertccCVE-2011-4055HistoryJan 08, 2012 - 12:55 a.m.
CVE-2011-4055
2012-01-0800:55:01
CWE-119
certcc
web.nvd.nist.gov
28
cve-2011-4055
buffer overflow
siemens
tecnomatix factorylink
nvd
security vulnerability
remote code execution
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.2
Confidence
Low
EPSS
0.062
Percentile
93.6%
Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 (aka 6.6 SP1), 7.5.217 (aka 7.5 SP2), and 8.0.2.54 allows remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL.
Affected configurations
Node
siemenstecnomatix_factorylinkMatch6.6.1
ORsiemenstecnomatix_factorylinkMatch7.5.217
ORsiemenstecnomatix_factorylinkMatch8.0.2.54
| Vendor | Product | Version | CPE |
|---|---|---|---|
| siemens | tecnomatix_factorylink | 6.6.1 | cpe:2.3:a:siemens:tecnomatix_factorylink:6.6.1:*:*:*:*:*:*:* |
| siemens | tecnomatix_factorylink | 7.5.217 | cpe:2.3:a:siemens:tecnomatix_factorylink:7.5.217:*:*:*:*:*:*:* |
| siemens | tecnomatix_factorylink | 8.0.2.54 | cpe:2.3:a:siemens:tecnomatix_factorylink:8.0.2.54:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2011-4055
2012-01-08 00:00:00
prion
prion
Buffer overflow
2012-01-08 00:55:00
nvd
nvd
CVE-2011-4055
2012-01-08 00:55:01
ics
ics
Siemens FactoryLink Multiple ActiveX Vulnerabilities
2013-05-08 12:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.2
Confidence
Low
EPSS
0.062
Percentile
93.6%
Related for CVE-2011-4055