CVE-2021-27397— Siemens Tecnomatix Plant Simulation 缓冲区错误漏洞

N/A

A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V16.0.5). The PlantSimCore.dll library lacks proper validation of user-supplied data when parsing SPP files. This could result in a memory corruption condition. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13287)

N/A

内存缓冲区边界内操作的限制不恰当

Siemens Tecnomatix Plant Simulation 缓冲区错误漏洞

Siemens Tecnomatix Plant Simulation是德国西门子（Siemens）公司的一个工控设备。利用离散事件仿真的强大功能进行生产量分析和优化，进而改善制造系统性能。 Tecnomatix Plant Simulation 存在缓冲区错误漏洞。该漏洞源于程序解析SPP文件时，PlantSimCore.dll库缺少对用户提供的数据的正确验证。这可能会导致内存损坏以下产品及版本受到影响：Tecnomatix Plant Simulation: All Versions prior to

N/A

N/A