Lucene search
IcscertCVELIST:CVE-2018-18993HistoryDec 04, 2018 - 10:00 p.m.
CVE-2018-18993
2018-12-0422:00:00
CWE-121
icscert
www.cve.org
8
Two stack-based buffer overflow vulnerabilities have been discovered in CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior). When processing project files, the application allows input data to exceed the buffer. An attacker could use a specially crafted project file to overflow the buffer and execute code under the privileges of the application.
CNA Affected
[
{
"product": "CX-One (CX-Programmer and CX-Server)",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior)"
}
]
}
]Related
prion
prion
Stack overflow
2018-12-04 22:29:00
zdi
zdi
nvd
nvd
CVE-2018-18993
2018-12-04 22:29:00
cve
cve
CVE-2018-18993
2018-12-04 22:29:00
checkpoint_advisories
checkpoint_advisories
OMRON CX-One CX-Position module Buffer Overflow (CVE-2018-18993)
2019-02-19 00:00:00
ics
ics
Omron CX-One
2018-12-04 12:00:00