Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files. This could lead to an out-of-bounds write via an uninitialized pointer. An attacker could leverage this vulnerability to execute code in the context of the current process.
CVSS Information
N/A
Vulnerability Type
使用未经初始化的指针
Vulnerability Title
Horner Automation Cscape 缓冲区错误漏洞
Vulnerability Description
Horner Automation Cscape是美国Horner Automation公司的一套用于工业控制系统开发的编程软件。 Horner Automation Cscape 中存在缓冲区错误漏洞,该漏洞源于产品在解析项目文件时未验证指针的有效性,攻击者可通过该漏洞越界写入并在当前上下文中执行代码。以下产品及版本受到影响:Horner Automation Cscape Version 9.90 SP5 之前版本。
CVSS Information
N/A
Vulnerability Type
N/A