Lucene search

IcscertCVE-2012-3035

HistoryOct 01, 2012 - 6:55 p.m.

CVE-2012-3035

2012-10-0118:55:00

CWE-119

icscert

web.nvd.nist.gov

cve-2012-3035

buffer overflow

emerson deltav

denial of service

nvd

daemon crash

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

Confidence

High

EPSS

0.007

Percentile

80.4%

JSON

Buffer overflow in Emerson DeltaV 9.3.1 and 10.3 through 11.3.1 allows remote attackers to cause a denial of service (daemon crash) via a long string to an unspecified port.

Affected configurations

Nvd

Node

emersondeltavMatch9.3.1

emersondeltavMatch10.3.1

emersondeltavMatch11.3

emersondeltavMatch11.3.1

VendorProductVersionCPE
emersondeltav9.3.1cpe:2.3:a:emerson:deltav:9.3.1:*:*:*:*:*:*:*
emersondeltav10.3.1cpe:2.3:a:emerson:deltav:10.3.1:*:*:*:*:*:*:*
emersondeltav11.3cpe:2.3:a:emerson:deltav:11.3:*:*:*:*:*:*:*
emersondeltav11.3.1cpe:2.3:a:emerson:deltav:11.3.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
emerson	deltav	9.3.1	cpe:2.3:a:emerson:deltav:9.3.1:::::::*
emerson	deltav	10.3.1	cpe:2.3:a:emerson:deltav:10.3.1:::::::*
emerson	deltav	11.3	cpe:2.3:a:emerson:deltav:11.3:::::::*
emerson	deltav	11.3.1	cpe:2.3:a:emerson:deltav:11.3.1:::::::*

References

www.securityfocus.com/bid/55719

www.us-cert.gov/control_systems/pdf/ICSA-12-265-01.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/78972

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

Confidence

High

EPSS

0.007

Percentile

80.4%

JSON

Related for CVE-2012-3035