Lucene search

[email protected]NVD:CVE-2007-4827

HistorySep 19, 2007 - 6:17 p.m.

CVE-2007-4827

2007-09-1918:17:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

Low

EPSS

0.337

Percentile

97.1%

JSON

Unspecified vulnerability in the Modbus/TCP Diagnostic function in MiniHMI.exe for the Automated Solutions Modbus Slave ActiveX Control before 1.5 allows remote attackers to corrupt the heap and possibly execute arbitrary code via malformed Modbus requests to TCP port 502.

Affected configurations

Nvd

Node

automated_solutionsmodbus_slave_activex_controlRange≤1.4

VendorProductVersionCPE
automated_solutionsmodbus_slave_activex_control*cpe:2.3:a:automated_solutions:modbus_slave_activex_control:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
automated_solutions	modbus_slave_activex_control	*	cpe:2.3:a:automated_solutions:modbus_slave_activex_control::::::::

References

dvlabs.tippingpoint.com/advisory/TPTI-07-15

osvdb.org/38259

www.automatedsolutions.com/pub/asmbslv/ReadMe.htm

www.kb.cert.org/vuls/id/981849

www.nessus.org/plugins/index.php?view=single&id=26066

www.securityfocus.com/archive/1/479967/100/0/threaded

www.securityfocus.com/bid/25713

www.securitytracker.com/id?1018707

exchange.xforce.ibmcloud.com/vulnerabilities/36677

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

Low

EPSS

0.337

Percentile

97.1%

JSON

Related for NVD:CVE-2007-4827

securityvulns2 cve1 prion1 cert1 cvelist1