This script is Copyright (C) 2012-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SCADA_PROMOTIC_8_1_5.NBINMicrosys PROMOTIC < 8.1.5 Multiple Vulnerabilities
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
56.3%
The remote Windows host has a version of Microsys PROMOTIC installed that is less than 8.1.5. Such versions are affected by multiple vulnerabilities, including:
-
The ‘GetPromoticSite()’ method of the ActiveX Control ‘pmtable.ocx’ can reference an uninitialized pointer in certain situations.
-
A directory traversal vulnerability may be exploited by sending a specially crafted request to the web server running on port 80. (CVE-2011-4518)
-
A stack overflow vulnerability affecting the SafeCfg() method of the PmTrendViewer ActiveX control.
(CVE-2011-4519) -
A heap overflow vulnerability affecting the AddTrend() method of the PmTrendViewer ActiveX control.
(CVE-2011-4520)
Binary data scada_promotic_8_1_5.nbinRelated
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
56.3%