164 matches found
winproladder缓冲区错误漏洞
winproladder is a PLC programming software of China Yonghong patek. The software has easy programming operations, super control, algorithmic commands, super communication, NC positioning function and other features A buffer error vulnerability exists in WinProladder 3.3024518 and prior versions,...
The vulnerability of the FATEK WinProladder controller programming software lies in the use of memory after it is freed, allowing a hacker to execute arbitrary code.
The vulnerability of the FATEK WinProladder controller programming software lies in the use of memory after it is freed during syntax analysis of project files. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...
FATEK Automation WinProladder
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: FATEK Automation Equipment: WinProladder Vulnerabilities: Out-of-bounds Write, Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow for arbitrary code execution. 3...
The vulnerability of the FATEK WinProladder controller programming software lies in the fact that the write operation can exceed the buffer boundaries into memory, allowing an attacker to execute arbitrary code.
The vulnerability of the FATEK WinProladder controller programming software lies in the fact that the write operation goes beyond the buffer boundaries when analyzing project files syntactically. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created...
The vulnerability of the FATEK WinProladder controller programming software lies in the fact that the write operation can exceed the buffer boundaries into memory. This allows a malicious actor to execute arbitrary code or cause a service failure.
The vulnerability of the FATEK WinProladder controller programming software lies in the fact that the write operation goes beyond the buffer boundaries into memory during PDW-file syntax analysis. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause system failures...
The vulnerability of the FATEK WinProladder software for controlling controllers arises from buffer overflows in the stack, allowing an attacker to execute arbitrary code.
The vulnerability of the FATEK WinProladder controller programming software is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by causing the user to open a specially created malicious file...
The vulnerability of the FATEK WinProladder controller programming software lies in an unexpected expansion of the symbol, allowing a hacker to execute arbitrary code.
The vulnerability of the FATEK WinProladder controller programming software is related to an unexpected expansion of the signature. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by having the user open a specially created malicious file...
CVE-2021-38438
A use after free vulnerability in FATEK Automation WinProladder versions 3.30 and prior may be exploited when a valid user opens a malformed project file, which may allow arbitrary code execution...
CVE-2021-38442
FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in a heap-corruption condition. An attacker could leverage this vulnerability to execute code in the context of the current process...
CVE-2021-38434
FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an unexpected sign extension. An attacker could leverage this vulnerability to execute arbitrary code...
CVE-2021-38440
FATEK Automation WinProladder versions 3.30 and prior is vulnerable to an out-of-bounds read, which may allow an attacker to read unauthorized information...
CVE-2021-38426
FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an out-of-bounds write. An attacker could leverage this vulnerability to execute arbitrary code...
CVE-2021-38426
FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an out-of-bounds write. An attacker could leverage this vulnerability to execute arbitrary code...
CVE-2021-38436
FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in a memory-corruption condition. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...
CVE-2021-38438
A use after free vulnerability in FATEK Automation WinProladder versions 3.30 and prior may be exploited when a valid user opens a malformed project file, which may allow arbitrary code execution...
CVE-2021-38442
FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in a heap-corruption condition. An attacker could leverage this vulnerability to execute code in the context of the current process...
CVE-2021-38430
FATEK Automation WinProladder versions 3.30 and prior proper validation of user-supplied data when parsing project files, which could result in a stack-based buffer overflow. An attacker could leverage this vulnerability to execute arbitrary code...
CVE-2021-38430
FATEK Automation WinProladder versions 3.30 and prior proper validation of user-supplied data when parsing project files, which could result in a stack-based buffer overflow. An attacker could leverage this vulnerability to execute arbitrary code...
CVE-2021-38434
FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an unexpected sign extension. An attacker could leverage this vulnerability to execute arbitrary code...
CVE-2021-38440
FATEK Automation WinProladder versions 3.30 and prior is vulnerable to an out-of-bounds read, which may allow an attacker to read unauthorized information...