Lucene search

K
cve[email protected]CVE-2014-0784
HistoryMar 14, 2014 - 10:55 a.m.

CVE-2014-0784

2014-03-1410:55:05
CWE-119
web.nvd.nist.gov
29
cve-2014-0784
yokogawa
centum cs 3000
buffer overflow
security vulnerability
remote code execution

8.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:P/I:P/A:C

8 High

AI Score

Confidence

Low

0.254 Low

EPSS

Percentile

96.7%

Stack-based buffer overflow in BKBCopyD.exe in Yokogawa CENTUM CS 3000 R3.09.50 and earlier allows remote attackers to execute arbitrary code via a crafted TCP packet.

Affected configurations

NVD
Node
yokogawacentum_cs_3000Ranger3.09.50
OR
yokogawacentum_cs_3000Matchr3.01
OR
yokogawacentum_cs_3000Matchr3.02
OR
yokogawacentum_cs_3000Matchr3.03
OR
yokogawacentum_cs_3000Matchr3.04
OR
yokogawacentum_cs_3000Matchr3.05
OR
yokogawacentum_cs_3000Matchr3.06
OR
yokogawacentum_cs_3000Matchr3.07
OR
yokogawacentum_cs_3000Matchr3.08
OR
yokogawacentum_cs_3000Matchr3.08.50
OR
yokogawacentum_cs_3000Matchr3.08.70
OR
yokogawacentum_cs_3000Matchr3.09

8.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:P/I:P/A:C

8 High

AI Score

Confidence

Low

0.254 Low

EPSS

Percentile

96.7%