Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0230

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2012-0230
Last Modified 16 Mar 2012 12:00:00
Published 15 Mar 2012 02:55:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-0230

Summary

PRRDS.exe in the Proficy Remote Data Service in GE Intelligent Platforms Proficy Plant Applications 5.0 and earlier allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted TCP session on port 12299.

Vulnerable Systems

Application

  • Intelligent Platforms Proficy Plant Applications 215.8

  • Intelligent Platforms Proficy Plant Applications 4.2.2

  • Intelligent Platforms Proficy Plant Applications 4.2.3

  • Intelligent Platforms Proficy Plant Applications 4.3.1

  • Intelligent Platforms Proficy Plant Applications 4.4.1

  • Intelligent Platforms Proficy Plant Applications 5.0


References

MISC - http://www.us-cert.gov/control_systems/pdf/ICSA-12-032-02.pdf

MISC - http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB14766


Last Updated: 27 May 2016 10:57:28