Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3008

Overview

Vulnerability Score 8.5 8.5
CVE Id CVE-2012-3008
Last Modified 23 Jul 2012 12:00:00
Published 20 Jul 2012 06:40:37
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2012-3008

Summary

Stack-based buffer overflow in OSIsoft PI OPC DA Interface before 2.3.20.9 allows remote authenticated users to execute arbitrary code by sending packet data during the processing of messages associated with OPC items.

Vulnerable Systems

Application

  • Osisoft Pi Opc Da Interface 2.3.16.16

  • Osisoft Pi Opc Da Interface 2.3.17.18


References

MISC - http://www.us-cert.gov/control_systems/pdf/ICSA-12-201-01.pdf


Last Updated: 27 May 2016 10:54:56