CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

148 matches found

Metasploit•added 2019/02/11 7:46 p.m.•42 views

Unitronics PCOM remote START/STOP/RESET command

Unitronics Vision PLCs allow remote administrative functions to control the PLC using authenticated PCOM commands. This module supports START, STOP and RESET operations. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

0.2AI score

Exploits0

Metasploit•added 2019/01/16 12:16 a.m.•39 views

Unitronics PCOM Client

Unitronics Vision PLCs allow unauthenticated PCOM commands to query PLC registers. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Unitronics PCOM Client', 'Description' = %q Unitronics Vision...

0.6AI score

Exploits0

ICS•added 2018/08/23 12:0 p.m.•58 views

Unitronics VisiLogic OPLC IDE vlp File Parsing Stack Buffer Overflow Vulnerability

OVERVIEW ZDI has identified a buffer overflow vulnerability discovered by Steven Seeley of Source Incite in Unitronics VisiLogic. Unitronics has produced a new version to mitigate this vulnerability. This vulnerability could be exploited remotely. AFFECTED PRODUCTS Unitronics reports that the...

9.8CVSS10AI score0.09753EPSS

Exploits0References18

OSV•added 2016/06/25 1:59 a.m.•1 views

CVE-2016-4519

Stack-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.30 allows remote attackers to execute arbitrary code via a crafted filename field in a ZIP archive in a vlp file...

9.8CVSS6.4AI score

Exploits0References3

Prion•added 2016/06/25 1:59 a.m.•9 views

Stack overflow

Stack-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.30 allows remote attackers to execute arbitrary code via a crafted filename field in a ZIP archive in a vlp file...

7.5CVSS8.6AI score0.09753EPSS

Exploits0References3Affected Software1

NVD•added 2016/06/25 1:59 a.m.•10 views

CVE-2016-4519

Stack-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.30 allows remote attackers to execute arbitrary code via a crafted filename field in a ZIP archive in a vlp file...

9.8CVSS9.8AI score0.09753EPSS

Exploits0References3

Cvelist•added 2016/06/25 1:0 a.m.•14 views

CVE-2016-4519

Stack-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.30 allows remote attackers to execute arbitrary code via a crafted filename field in a ZIP archive in a vlp file...

9.8AI score0.09753EPSS

Exploits0References3

CVE•added 2016/06/25 1:0 a.m.•39 views

CVE-2016-4519

CVE-2016-4519 affects Unitronics VisiLogic OPLC IDE (pre-9.8.30) via a stack-based buffer overflow in parsing the vlp/ZIP filename field. The root cause is copying into a fixed-length stack buffer without validating the filename length, enabling remote code execution. Exploitation details indicat...

9.8CVSS9.7AI score0.09753EPSS

Exploits0References3Affected Software1

CNVD•added 2016/06/24 12:0 a.m.•3 views

Unitronics VisiLogic OPLC IDE Stack Buffer Overflow Vulnerability

Unitronics VisiLogic OPLC IDE is a suite of Human Machine Interface HMI and PLC application programming environments for use in the Vision and SAMBA series of controllers from Unitronics Israel. A stack buffer overflow vulnerability exists in the Unitronics VisiLogic OPLC IDE prior to version...

9.8CVSS7.8AI score0.09753EPSS

Exploits0References1

Zero Day Initiative•added 2016/06/24 12:0 a.m.•39 views

Unitronics VisiLogic OPLC IDE vlp File Parsing Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Unitronics VisiLogic OPLC IDE. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS5AI score0.09753EPSS

Exploits0References1

Check Point Advisories•added 2016/03/01 12:0 a.m.•4 views

Unitronics UniDownloader and VisiLogic OPLC IDE IPWorksSSL.HTTPS Memory Corruption (CVE-2015-7905)

A memory corruption vulnerability exists in Unitronics, VisiLogic OPLC IDE and UniDownloader. The vulnerability is due to untrusted pointer dereference on the SSLCertHandle parameter of the IPWorksSSL.HTTPS ActiveX control. A remote attacker could exploit this vulnerability by enticing a vulnerab...

7.5CVSS3.3AI score0.01103EPSS

Exploits0

Check Point Advisories•added 2016/02/22 12:0 a.m.•3 views

Unitronics VisiLogic OPLC IDE TeePreviewer ChartLink Memory Corruption (CVE-2015-6478)

A memory corruption vulnerability has been reported in Unitronics VisiLogic OPLC IDE. The vulnerability is due to a flaw in the TeePreviewer object in TeeChart5.ocx, in which a user-supplied integer is interpreted as a memory address. A remote, unauthenticated attacker could exploit this...

6.8CVSS9.4AI score0.01642EPSS

Exploits0

Check Point Advisories•added 2016/02/22 12:0 a.m.•2 views

Unitronics VisiLogic OPLC TeeCommander ChartLink ActiveX Control Memory Corruption (CVE-2015-6478)

A memory corruption vulnerability exists in Unitronics VisiLogic OPLC. The vulnerability is due to untrusted pointer dereference on the ChartLink parameter of the TeeChart.TeeCommander ActiveX control. A remote attacker could exploit this vulnerability by enticing a vulnerable user to open a...

6.8CVSS9AI score0.01642EPSS

Exploits0

Check Point Advisories•added 2016/02/22 12:0 a.m.•6 views

Unitronics VisiLogic OPLC TeeChart ActiveX RemoveSeries Out of Bounds Array Indexing (CVE-2015-6478)

An out of bounds array indexing vulnerability exists in Unitronics VisiLogic OPLC. The vulnerability is due to use of user supplied value to calculate array index in the RemoveSeries method of the TeeChart.TChart ActiveX control. A remote attacker could exploit this vulnerability by enticing a...

6.8CVSS8.9AI score0.01642EPSS

Exploits0

Check Point Advisories•added 2016/02/11 12:0 a.m.•2 views

Unitronics VisiLogic OPLC IDE vlp File Parsing Heap Buffer Overflow (CVE-2015-7939)

A heap buffer overflow vulnerability exists in Unitronics VisiLogic OPLC IDE. The vulnerability is due to errors parsing VisiLogic project files. A remote attacker could exploit this vulnerability by enticing a vulnerable user to open a crafted web page or file. Successful exploitation could lead...

9.3CVSS4.1AI score0.01609EPSS

Exploits0

NVD•added 2016/01/09 2:59 a.m.•10 views

CVE-2015-7939

Heap-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.09 allows remote attackers to execute arbitrary code via a long vlp filename...

9.6CVSS9.8AI score0.01609EPSS

Exploits0References2

Prion•added 2016/01/09 2:59 a.m.•8 views

Heap overflow

Heap-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.09 allows remote attackers to execute arbitrary code via a long vlp filename...

9.3CVSS8.7AI score0.01609EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2016/01/09 2:59 a.m.•1 views

CVE-2015-7939

Heap-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.09 allows remote attackers to execute arbitrary code via a long vlp filename...

9.6CVSS6.4AI score0.01609EPSS

Exploits0References3

CVE•added 2016/01/09 2:0 a.m.•40 views

CVE-2015-7939

Unitronics VisiLogic OPLC IDE is affected by CVE-2015-7939. A heap-based buffer overflow occurs while parsing vlp project files, allowing remote code execution in the context of the local administrator. Exploitation details in sources indicate that a specially crafted vlp file or page can trigger...

9.6CVSS9.7AI score0.01609EPSS

Exploits0References2Affected Software1

Cvelist•added 2016/01/09 2:0 a.m.•14 views

CVE-2015-7939

Heap-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.09 allows remote attackers to execute arbitrary code via a long vlp filename...

9.8AI score0.01609EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by