5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
56.3%
The remote Windows host has a version of Microsys PROMOTIC installed that is less than 8.1.5. Such versions are affected by multiple vulnerabilities, including:
The ‘GetPromoticSite()’ method of the ActiveX Control ‘pmtable.ocx’ can reference an uninitialized pointer in certain situations.
A directory traversal vulnerability may be exploited by sending a specially crafted request to the web server running on port 80. (CVE-2011-4518)
A stack overflow vulnerability affecting the SafeCfg() method of the PmTrendViewer ActiveX control.
(CVE-2011-4519)
A heap overflow vulnerability affecting the AddTrend() method of the PmTrendViewer ActiveX control.
(CVE-2011-4520)
Binary data scada_promotic_8_1_5.nbin