Automation License Manager Security Vulnerabilities and Issues — Automation License Manager CVE List

Lucene search

SiemensAutomation License Manager

5 matches found

CVE•added 2012/01/08 8:55 p.m.•49 views

CVE-2011-4530

Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 does not properly copy fields obtained from clients, which allows remote attackers to cause a denial of service (exception and daemon crash) via long fields, as demonstrated by fields to the (1) open_session->workstation->NAME ...

5CVSS6.9AI score0.19728EPSS

CVE•added 2012/12/18 12:30 p.m.•46 views

CVE-2012-4691

Memory leak in Siemens Automation License Manager (ALM) 4.x and 5.x before 5.2 allows remote attackers to cause a denial of service (memory consumption) via crafted packets.

3.3CVSS6.7AI score0.00104EPSS

CVE•added 2012/01/08 8:55 p.m.•42 views

CVE-2011-4532

Absolute path traversal vulnerability in the ALMListView.ALMListCtrl ActiveX control in almaxcx.dll in the graphical user interface in Siemens Automation License Manager (ALM) 2.0 through 5.1+SP1+Upd2 allows remote attackers to overwrite arbitrary files via the Save method.

5CVSS7AI score0.08074EPSS

CVE•added 2012/01/08 8:55 p.m.•40 views

CVE-2011-4531

Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted content in a (1) get_target_ocx_param or (2) send_target_ocx_param command.

5CVSS6.8AI score0.22825EPSS

CVE•added 2012/01/08 8:55 p.m.•35 views

CVE-2011-4529

Multiple buffer overflows in Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 allow remote attackers to execute arbitrary code via a long serialid field in an _licensekey command, as demonstrated by the (1) check_licensekey or (2) read_licensekey command.

7.5CVSS8AI score0.22454EPSS