Stack-based buffer overflow in slssvc.exe before 58.x in Invensys Wonderware SuiteLink in the Invensys System Platform software suite, as used in InTouch/Wonderware Application Server IT before 10.5 and WAS before 3.5, DASABCIP before 4.1 SP2, DASSiDirect before 3.0, DAServer Runtime Components before 3.0 SP2, and other products, allows remote attackers to cause a denial of service (daemon crash or hang) via a long Unicode string.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:40
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/49173 - | |
References | () http://www.securityfocus.com/bid/53563 - | |
References | () http://www.us-cert.gov/control_systems/pdf/ICSA-12-171-01.pdf - US Government Resource |
Information
Published : 2012-07-05 03:23
Updated : 2024-11-21 01:40
NVD link : CVE-2012-3007
Mitre link : CVE-2012-3007
CVE.ORG link : CVE-2012-3007
JSON object : View
Products Affected
invensys
- daserver_runtime_components
- dassidirect
- wonderware_application_server
- intouch\/wonderware_application_server
- dasabcip
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer