Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2012-4357
cve-2012-4357
sielco sistemi
winlog pro
winlog lite
scada
remote code execution
security vulnerability
7.9 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.01 Low
EPSS
Percentile
84.0%
Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 might allow remote attackers to execute arbitrary code by referencing, within a port-46824 TCP packet, an invalid file-pointer index that leads to execution of an EnterCriticalSection code block.
Affected configurations
Node
sielcosistemiwinlog_proRange≤2.07.16
ORsielcosistemiwinlog_proMatch2.06.00
ORsielcosistemiwinlog_proMatch2.06.03
ORsielcosistemiwinlog_proMatch2.06.04
ORsielcosistemiwinlog_proMatch2.06.06
ORsielcosistemiwinlog_proMatch2.06.09
ORsielcosistemiwinlog_proMatch2.06.10
ORsielcosistemiwinlog_proMatch2.06.12
ORsielcosistemiwinlog_proMatch2.06.13
ORsielcosistemiwinlog_proMatch2.06.14
ORsielcosistemiwinlog_proMatch2.06.18
ORsielcosistemiwinlog_proMatch2.06.21
ORsielcosistemiwinlog_proMatch2.06.24
ORsielcosistemiwinlog_proMatch2.06.25
ORsielcosistemiwinlog_proMatch2.06.28
ORsielcosistemiwinlog_proMatch2.06.40
ORsielcosistemiwinlog_proMatch2.06.46
ORsielcosistemiwinlog_proMatch2.06.50
ORsielcosistemiwinlog_proMatch2.06.60
ORsielcosistemiwinlog_proMatch2.06.73
ORsielcosistemiwinlog_proMatch2.06.86
ORsielcosistemiwinlog_proMatch2.07.00
ORsielcosistemiwinlog_proMatch2.07.01
ORsielcosistemiwinlog_proMatch2.07.08
ORsielcosistemiwinlog_proMatch2.07.09
ORsielcosistemiwinlog_proMatch2.07.11
ORsielcosistemiwinlog_proMatch2.07.14
Node
sielcosistemiwinlog_liteRange≤2.07.16
ORsielcosistemiwinlog_liteMatch2.06.00
ORsielcosistemiwinlog_liteMatch2.06.03
ORsielcosistemiwinlog_liteMatch2.06.04
ORsielcosistemiwinlog_liteMatch2.06.06
ORsielcosistemiwinlog_liteMatch2.06.09
ORsielcosistemiwinlog_liteMatch2.06.10
ORsielcosistemiwinlog_liteMatch2.06.12
ORsielcosistemiwinlog_liteMatch2.06.13
ORsielcosistemiwinlog_liteMatch2.06.14
ORsielcosistemiwinlog_liteMatch2.06.18
ORsielcosistemiwinlog_liteMatch2.06.21
ORsielcosistemiwinlog_liteMatch2.06.24
ORsielcosistemiwinlog_liteMatch2.06.25
ORsielcosistemiwinlog_liteMatch2.06.28
ORsielcosistemiwinlog_liteMatch2.06.40
ORsielcosistemiwinlog_liteMatch2.06.46
ORsielcosistemiwinlog_liteMatch2.06.50
ORsielcosistemiwinlog_liteMatch2.06.60
ORsielcosistemiwinlog_liteMatch2.06.73
ORsielcosistemiwinlog_liteMatch2.06.86
ORsielcosistemiwinlog_liteMatch2.07.00
ORsielcosistemiwinlog_liteMatch2.07.01
ORsielcosistemiwinlog_liteMatch2.07.08
ORsielcosistemiwinlog_liteMatch2.07.09
ORsielcosistemiwinlog_liteMatch2.07.11
ORsielcosistemiwinlog_liteMatch2.07.14
Related
cvelist
cvelist
CVE-2012-4357
2022-10-03 16:15:34
nvd
nvd
CVE-2012-4357
2012-08-19 20:55:01
prion
prion
Code injection
2012-08-19 20:55:00
nessus
nessus
Sielco Sistemi Winlog < 2.07.17 Multiple Vulnerabilities
2012-09-10 00:00:00
openvas
openvas
Sielco Sistemi Winlog Multiple Vulnerabilities
2012-06-28 00:00:00
7.9 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.01 Low
EPSS
Percentile
84.0%
Related for CVE-2012-4357