Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-3007
HistoryJul 05, 2012 - 3:23 a.m.

CVE-2012-3007

2012-07-0503:23:18
CWE-119
[email protected]
web.nvd.nist.gov
24
cve
2012
3007
buffer overflow
invensys
wonderware
suitelink
security vulnerability
denial of service
nvd

7.2 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

80.3%

JSON

Stack-based buffer overflow in slssvc.exe before 58.x in Invensys Wonderware SuiteLink in the Invensys System Platform software suite, as used in InTouch/Wonderware Application Server IT before 10.5 and WAS before 3.5, DASABCIP before 4.1 SP2, DASSiDirect before 3.0, DAServer Runtime Components before 3.0 SP2, and other products, allows remote attackers to cause a denial of service (daemon crash or hang) via a long Unicode string.

Affected configurations

NVD
Node
invensysdasabcipRange4.1sp1
OR
invensysdasabcipMatch4.1
OR
invensysdaserver_runtime_componentsRange3.0sp1
OR
invensysdaserver_runtime_componentsMatch3.0
OR
invensysdassidirectRange2.0
OR
invensysintouch\/wonderware_application_serverRange10.0
OR
invensyswonderware_application_serverRange3.1sp2
OR
invensyswonderware_application_serverMatch3.0
OR
invensyswonderware_application_serverMatch3.0.200sp2
OR
invensyswonderware_application_serverMatch3.1
OR
invensyswonderware_application_serverMatch3.1sp1
OR
invensyswonderware_application_serverMatch3.1.201sp2

Related

nvd 2
prion 2
ics 1
cvelist 2
cve 1
nvd
nvd
CVE-2012-3007
2012-07-05 03:23:18
CVE-2012-3847
2012-07-05 03:23:18
prion
prion
Stack overflow
2012-07-05 03:23:00
Design/Logic Flaw
2012-07-05 03:23:00
ics
ics
Wonderware SuiteLink Unallocated Unicode String Vulnerability
2018-09-06 12:00:00
cvelist
cvelist
CVE-2012-3007
2012-07-05 01:00:00
CVE-2012-3847
2012-07-05 01:00:00
cve
cve
CVE-2012-3847
2012-07-05 03:23:18

7.2 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

80.3%

JSON
Related for CVE-2012-3007
nvd2prion2ics1cvelist2cve1