Lucene search
K

32 matches found

ICS
ICS
added 2014/11/30 7:0 a.m.33 views

Schneider Electric OFS Buffer Overflow Vulnerability

OVERVIEW Schneider Electric has reported to NCCIC/ICS-CERT a Stack Buffer Overflow vulnerability supplied with the Schneider Electric OPC Factory Server OSF. Independent researcher known as 0x7A240E67 submitted the vulnerability to ZDI, who provided coordination with the vendor and ICS-CERT...

6.9CVSS7.5AI score0.00467EPSS
Exploits0References10
Prion
Prion
added 2014/04/04 3:9 p.m.12 views

Buffer overflow

Multiple buffer overflows in the OPC Automation 2.0 Server Object ActiveX control in Schneider Electric OPC Factory Server OFS TLXCDSUOFS33 3.5 and earlier, TLXCDSTOFS33 3.5 and earlier, TLXCDLUOFS33 3.5 and earlier, TLXCDLTOFS33 3.5 and earlier, and TLXCDLFOFS33 3.5 and earlier allow remote...

7.8CVSS7.4AI score0.02471EPSS
Exploits0References2Affected Software5
ThreatPost
ThreatPost
added 2014/03/28 10:34 a.m.11 views

Patch Available for Schneider Electric Serial Modbus Driver

Schneider Electric, a leading provider of industrial control systems, recently patched a remotely exploitable vulnerability in a driver found in 11 of its products. The Industrial Control Systems Computer Emergency Response Team ICS-CERT released an advisory yesterday alerting users to the...

2.2AI score
Exploits0References4
NVD
NVD
added 2014/02/28 6:18 a.m.13 views

CVE-2014-0774

Stack-based buffer overflow in the C++ sample client in Schneider Electric OPC Factory Server OFS TLXCDSUOFS33 - 3.35, TLXCDSTOFS33 - 3.35, TLXCDLUOFS33 - 3.35, TLXCDLTOFS33 - 3.35, and TLXCDLFOFS33 - 3.35 allows local users to gain privileges via vectors involving a malformed configuration file...

6.9CVSS6.9AI score0.00467EPSS
Exploits0References5
Prion
Prion
added 2014/02/28 6:18 a.m.14 views

Stack overflow

Stack-based buffer overflow in the C++ sample client in Schneider Electric OPC Factory Server OFS TLXCDSUOFS33 - 3.35, TLXCDSTOFS33 - 3.35, TLXCDLUOFS33 - 3.35, TLXCDLTOFS33 - 3.35, and TLXCDLFOFS33 - 3.35 allows local users to gain privileges via vectors involving a malformed configuration file...

6.9CVSS7.5AI score0.00467EPSS
Exploits0References3Affected Software6
Cvelist
Cvelist
added 2014/02/28 2:0 a.m.18 views

CVE-2014-0774 Schneider Electric OFS Stack Buffer Overflow

Stack-based buffer overflow in the C++ sample client in Schneider Electric OPC Factory Server OFS TLXCDSUOFS33 - 3.35, TLXCDSTOFS33 - 3.35, TLXCDLUOFS33 - 3.35, TLXCDLTOFS33 - 3.35, and TLXCDLFOFS33 - 3.35 allows local users to gain privileges via vectors involving a malformed configuration file...

6.8CVSS6.9AI score0.00467EPSS
Exploits0References3
CVE
CVE
added 2014/02/28 2:0 a.m.49 views

CVE-2014-0774

CVE-2014-0774 affects Schneider Electric OPC Factory Server (OFS) – specifically the OFS Client stack (TLXCDSUOFS33, TLXCDSTOFS33, TLXCDLUOFS33, TLXCDLTOFS33, TLXCDLFOFS33 at 3.35). The root cause is a stack-based buffer overflow in the parsing of a demonstration/configuration file, which can lea...

6.9CVSS7.1AI score0.00467EPSS
Exploits0References5Affected Software6
ICS
ICS
added 2014/01/04 7:0 a.m.46 views

Schneider Electric OPC Factory Server Buffer Overflow

OVERVIEW Researcher Wei Gao, formerly of IXIA, has identified a buffer overflow vulnerability in the Schneider Electric OPC Factory Server OFS application. Schneider Electric has produced a patch that mitigates this vulnerability. Wei Gao has tested the patch to validate that it resolves the...

7.8CVSS6.7AI score0.02471EPSS
Exploits0References10
NVD
NVD
added 2011/11/04 9:55 p.m.16 views

CVE-2011-3330

Buffer overflow in the UnitelWay Windows Device Driver, as used in Schneider Electric Unity Pro 6 and earlier, OPC Factory Server 3.34, Vijeo Citect 7.20 and earlier, Telemecanique Driver Pack 2.6 and earlier, Monitor Pro 7.6 and earlier, and PL7 Pro 4.5 and earlier, allows local users, and...

7.2CVSS7.7AI score0.01302EPSS
Exploits0References6
Prion
Prion
added 2011/11/04 9:55 p.m.12 views

Buffer overflow

Buffer overflow in the UnitelWay Windows Device Driver, as used in Schneider Electric Unity Pro 6 and earlier, OPC Factory Server 3.34, Vijeo Citect 7.20 and earlier, Telemecanique Driver Pack 2.6 and earlier, Monitor Pro 7.6 and earlier, and PL7 Pro 4.5 and earlier, allows local users, and...

7.2CVSS8.4AI score0.01302EPSS
Exploits0References6Affected Software6
CVE
CVE
added 2011/11/04 9:0 p.m.65 views

CVE-2011-3330

Buffer overflow in the UnitelWay Windows Device Driver used by Schneider Electric Unity Pro 6 and earlier, OPC Factory Server 3.34, Vijeo Citect 7.20 and earlier, Telemecanique Driver Pack 2.6 and earlier, Monitor Pro 7.6 and earlier, and PL7 Pro 4.5 and earlier allows local users to execute arbi...

7.2CVSS8AI score0.01302EPSS
Exploits0References6Affected Software6
Cvelist
Cvelist
added 2011/11/04 9:0 p.m.22 views

CVE-2011-3330

Buffer overflow in the UnitelWay Windows Device Driver, as used in Schneider Electric Unity Pro 6 and earlier, OPC Factory Server 3.34, Vijeo Citect 7.20 and earlier, Telemecanique Driver Pack 2.6 and earlier, Monitor Pro 7.6 and earlier, and PL7 Pro 4.5 and earlier, allows local users, and...

7.7AI score0.01302EPSS
Exploits0References6
Rows per page
Query Builder