Lucene search

PRIOn knowledge basePRION:CVE-2008-2639

HistoryJun 16, 2008 - 6:41 p.m.

Stack overflow

2008-06-1618:41:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.822 High

EPSS

Percentile

98.3%

JSON

Stack-based buffer overflow in the ODBC server service in Citect CitectSCADA 6 and 7, and CitectFacilities 7, allows remote attackers to execute arbitrary code via a long string in the second application packet in a TCP session on port 20222.

CPENameOperatorVersion
citectfacilitieseq7
citectscadaeq6
citectscadaeq7

Name	Operator	Version
citectfacilities	eq	7
citectscada	eq	6
citectscada	eq	7

References

isc.sans.org/diary.html?storyid=4556

secunia.com/advisories/30638

securityreason.com/securityalert/3944

securitytracker.com/id?1020241

www.coresecurity.com/?action=item&id=2186

www.kb.cert.org/vuls/id/476345

www.kb.cert.org/vuls/id/CTAR-7ENQNH

www.securityfocus.com/archive/1/493272/100/0/threaded

www.securityfocus.com/bid/29634

www.vupen.com/english/advisories/2008/1834/references

exchange.xforce.ibmcloud.com/vulnerabilities/42992

www.exploit-db.com/exploits/6387

8.6 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.822 High

EPSS

Percentile

98.3%

JSON

Related for PRION:CVE-2008-2639