Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2957

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2011-2957
Last Modified 11 Aug 2011 10:45:29
Published 28 Jul 2011 02:55:03
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2011-2957

Summary

Unspecified vulnerability in Rockwell Automation FactoryTalk Diagnostics Viewer before V2.30.00 (CPR9 SR3) allows local users to execute arbitrary code via a crafted FactoryTalk Diagnostics Viewer (.ftd) configuration file, which triggers memory corruption.

Vulnerable Systems

Application

  • Rockwellautomation Factorytalk Diagnostics Viewer 2.10

  • Rockwellautomation Factorytalk Diagnostics Viewer 2.10.01

  • Rockwellautomation Factorytalk Diagnostics Viewer 2.10.02


References

MISC - http://www.us-cert.gov/control_systems/pdf/ICSA-11-175-01.pdf

BID - 48962

MISC - http://rockwellautomation.custhelp.com/app/answers/detail/a_id/448424


Last Updated: 27 May 2016 10:57:13