26 matches found
EUVD-2014-8227
Malware in sbrugna...
EUVD-2017-16937
Malware in sbrugna...
EUVD-2014-5295
Malware in sbrugna...
Schneider Electric VAMPSET
CVSS v3 5.6 ATTENTION: Low skill level to exploit. Vendor: Schneider Electric Equipment: VAMPSET Vulnerability: Memory Corruption AFFECTED PRODUCTS Schneider Electric reports that the vulnerability affects the following VAMPSET setting and configuration software products: VAMPSET, versions prior ...
Schneider Electric VAMPSET Memory Corruption Vulnerability
Schneider Electric VAMPSET is a suite of software from Schneider Electric, France, deployed in the energy industry to configure and maintain multiple relays and arc monitors. A memory corruption vulnerability exists in Schneider Electric VAMPSET version V2.2.189. Via a corrupted vf2 file, an...
Memory corruption
All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. This vulnerability causes the software to halt or not start when trying to open the corrupted file. This vulnerability occurs...
CVE-2017-7967
All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. This vulnerability causes the software to halt or not start when trying to open the corrupted file. This vulnerability occurs...
CVE-2017-7967
All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. This vulnerability causes the software to halt or not start when trying to open the corrupted file. This vulnerability occurs...
CVE-2017-7967
Summary (CVE-2017-7967) : Schneider Electric VAMPSET software prior to version 2.2.189 is vulnerable to memory corruption when a corrupted vf2 file is loaded. The issue occurs with malformed fill settings and is triggered in standalone mode, without a protection-relay connection. Exploitation is ...
CVE-2017-7967
All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. This vulnerability causes the software to halt or not start when trying to open the corrupted file. This vulnerability occurs...
Schneider Electric VAMPSET Local Memory Corruption Vulnerability
Schneider Electric VAMPSET is a suite of software from Schneider Electric, France, deployed in the energy industry to configure and maintain multiple relays and arc monitors. A local memory corruption vulnerability exists in Schneider Electric VAMPSET. An attacker could exploit this vulnerability...
Schneider Electric VAMPSET COMTRADE Records Buffer Overflow (CVE-2014-8390)
A heap buffer overflow vulnerability exists in Schneider Electric VAMPSET software. The vulnerability is due to improper processing of specific parameters within CFG and DAT files of a COMTRADE record. A remote, unauthenticated attacker can exploit this vulnerability by enticing the victim to ope...
Schneider Vampset buffer overflow
Heap and stack buffer overflows...
[CORE-2015-0007] - Schneider Vampset Stack and Heap Buffer Overflow
Advisory Information Title: Schneider Vampset Stack and Heap Buffer Overflow Advisory ID: CORE-2015-0007 Advisory URL: http://www.coresecurity.com/advisories/schneider-vampset-stack-and-heap-buffer-overflow Date published: 2015-03-30 Date of last update: 2015-03-27 Vendors contacted: Schneider...
Schneider Electric VAMPSET Buffer Overflow Vulnerability
Schneider Electric VAMPSET is a suite of software from Schneider Electric, France, deployed in the energy industry to configure and maintain multiple relays and arc monitors. A buffer overflow vulnerability exists in Schneider Electric VAMPSET version 2.2.145 and earlier. A local attacker can...
CVE-2014-8390
Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 allow local users to gain privileges via malformed disturbance-recording data in a 1 CFG or 2 DAT file...
Buffer overflow
Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 allow local users to gain privileges via malformed disturbance-recording data in a 1 CFG or 2 DAT file...
CVE-2014-8390
Schneider Electric VAMPSET software (Schneider Electric VAMPSET) is affected by CVE-2014-8390. A stack-based and a heap-based buffer overflow can be triggered by opening specially crafted COMTRADE disturbance-recording files (CFG/DAT) in vulnerable versions, allowing local privilege escalation. E...
CVE-2014-8390
Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 allow local users to gain privileges via malformed disturbance-recording data in a 1 CFG or 2 DAT file...
Schneider Vampset Stack and Heap Buffer Overflow
Advisory ID Internal CORE-2015-0007 1. Advisory Information Title: Schneider Vampset Stack and Heap Buffer Overflow Advisory ID: CORE-2015-0007 Advisory URL:https://www.coresecurity.com/core-labs/advisories/schneider-vampset-stack-and-heap-buffer-overflow Date published: 2015-03-30 Date of last...