17 matches found
CVE-2020-7523
Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver see security notification for versions which could cause local privilege escalation when the Modbus Serial Driver service is invoked. The driver does not properly assign, modify, track, or check privileg...
EUVD-2020-28648
Malware in sbrugna...
CVE-2020-7523
Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver see security notification for versions which could cause local privilege escalation when the Modbus Serial Driver service is invoked. The driver does not properly assign, modify, track, or check privileg...
CVE-2020-7523
Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver see security notification for versions which could cause local privilege escalation when the Modbus Serial Driver service is invoked. The driver does not properly assign, modify, track, or check privileg...
Privilege escalation
Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver see security notification for versions which could cause local privilege escalation when the Modbus Serial Driver service is invoked. The driver does not properly assign, modify, track, or check privileg...
CVE-2020-7523
Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver see security notification for versions which could cause local privilege escalation when the Modbus Serial Driver service is invoked. The driver does not properly assign, modify, track, or check privileg...
CVE-2020-7523
Schneider Electric Modbus Serial Driver contains an improper privilege management vulnerability that could enable local privilege escalation when the Modbus Serial Driver service is invoked. The driver reportedly does not properly assign, modify, track, or check privileges for an actor, creating ...
Schneider Electric Modbus Serial Driver Resource Management Error Vulnerability
Schneider Electric Modbus Serial Driver is a serial driver from Schneider Electric France. A resource management error vulnerability exists in the Schneider Electric Modbus Serial Driver. An attacker could exploit this vulnerability to perform write operations to system files or other critical us...
CVE-2018-7824
An Externally Controlled Reference to a Resource CWE-610 vulnerability exists in Schneider Electric Modbus Serial Driver For 64-bit Windows OS:V3.17 IE 37 and prior , For 32-bit Windows OS:V2.17 IE 27 and prior, and as part of the Driver Suite version:V14.12 and prior which could allow write acce...
CVE-2018-7824
An Externally Controlled Reference to a Resource CWE-610 vulnerability exists in Schneider Electric Modbus Serial Driver For 64-bit Windows OS:V3.17 IE 37 and prior , For 32-bit Windows OS:V2.17 IE 27 and prior, and as part of the Driver Suite version:V14.12 and prior which could allow write acce...
CVE-2018-7824
An Externally Controlled Reference to a Resource CWE-610 vulnerability exists in Schneider Electric Modbus Serial Driver For 64-bit Windows OS:V3.17 IE 37 and prior , For 32-bit Windows OS:V2.17 IE 27 and prior, and as part of the Driver Suite version:V14.12 and prior which could allow write acce...
CVE-2018-7824
The CVE-2018-7824 entry concerns Schneider Electric Modbus Serial Driver. Affected components are the Modbus Serial Driver for 64‑bit Windows (V3.17 IE37 and prior) and 32‑bit Windows (V2.17 IE27 and prior), including the Driver Suite (V14.12 and prior). The vulnerability is an External Control o...
Schneider Electric Serial Modbus Driver Buffer Overflow
OVERVIEW Carsten Eiram of Risk-Based Security has identified a stack-based buffer overflow vulnerability in Schneider Electric’s Serial Modbus Driver that affects 11 Schneider Electric products. Schneider Electric has produced patches that mitigate this vulnerability. This vulnerability can be...
Schneider Electric Serial Modbus Driver Buffer Overflow (Update A)
OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-14-086-01A Schneider Electric Serial Modbus Driver Buffer Overflow that was published March 27, 2014, on the NCCIC/ICS-CERT web site. Carsten Eiram of Risk-Based Security has identified a stack-based buffer overflo...
CVE-2013-0662
Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header...
Stack overflow
Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header...
CVE-2013-0662
The CVE-2013-0662 vulnerability affects Schneider Electric’s Modbus Serial Driver (ModbusDrv.exe) used by multiple Schneider Electric products. A stack-based buffer overflow is triggered when a large value is specified in the Modbus Application Header, enabling remote code execution with the user...