4 matches found
CVE-2012-3005
CVE-2012-3005 is an Untrusted Search Path (DLL hijack) vulnerability in Invensys Wonderware InTouch 2012 and earlier, used by Wonderware InTouch family products (Application Server, Information Server, Foxboro Control Software, InFusion CE/FE/SCADA, InBatch, Wonderware Historian). The underlying ...
CVE-2011-4870
CVE-2011-4870 covers multiple buffer overflows in Invensys Wonderware InBatch, specifically the GUIControls, BatchObjSrv, and BatchSecCtrl ActiveX controls. Affected versions include InBatch 8.1 SP1, 9.0, 9.0 SP1, 9.0 SP2, and 9.5 Server/Runtime Clients; the root cause is improper handling of lon...
CVE-2010-4557
CVE-2010-4557 describes a buffer overflow in the lm_tcp service of Wonderware InBatch 8.1/9.0 (used in Invensys Foxboro I/A Series Batch 8.1 and potentially other products). A crafted request to TCP port 9001 could cause a denial of service and potentially allow arbitrary code execution. Affected...
CVE-2011-3141
CVE-2011-3141 affects Invensys Wonderware InBatch, specifically the BatchField ActiveX control. Vulnerable versions include InBatch 8.1 SP1, 9.0, and 9.0 SP1. The root cause is a buffer overflow in the BatchField ActiveX control, allowing a remote attacker to cause a denial of service and potenti...