Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier, InFusion CE/FE/SCADA 2.5 and earlier, Wonderware Information Server 4.5 and earlier, ArchestrA Application Object Toolkit 3.2 and earlier, and InTouch 10.0 through 10.5 might allow remote attackers to execute arbitrary code via a long string to the Open member, leading to a function-pointer overwrite.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Invensys缓冲区溢出漏洞
Vulnerability Description
多个Invensys产品中存在多个基于堆的缓冲区溢出漏洞。攻击者可利用这些漏洞在使用该ActiveX控件的应用程序上下文中执行任意代码(典型如IE),攻击失败可能导致拒绝服务。以下产品中存在这些漏洞:Wonderware Application Server 2012及之前版本,Foxboro Control Software 3.1及之前版本,InFusion CE/FE/SCADA 2.5及之前版本,Wonderware Information Server 4.5及之前版本,ArchestrA Ap
CVSS Information
N/A
Vulnerability Type
N/A