2 matches found
CVE-2014-5407
CVE-2014-5407 affects Schneider Electric’s VAMPSET software (version 2.2.136 and earlier). The issue is a stack-based buffer overflow triggered when opening corrupted VAMPSET setting files or disturbance recording files, leading to a local denial of service (application halt). No public exploits ...
Schneider Electric VAMPSET Buffer Overflow
OVERVIEW Aivar Liimets of Martem AS has identified a buffer overflow vulnerability in Schneider Electric’s VAMPSET software product. He reported it directly to Schneider Electric who reported it to NCCIC/ICS-CERT once the problem was fixed. Schneider Electric has produced an update that mitigates...