Unknown
CVE-2012-4355
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)
Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
TCPIPS_Story.dll in Sielco Sistemi Winlog Pro SCADA before 2.07.18 and Winlog Lite SCADA before 2.07.18 allows remote attackers to execute arbitrary code via a port-46824 TCP packet with a crafted negative integer after the opcode, triggering incorrect function-pointer processing that can lead to a buffer overflow. NOTE: some of these details are obtained from third party information. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-4354.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- winlog lite,
- winlog lite 2.06.00,
- winlog lite 2.06.03,
- winlog lite 2.06.04,
- winlog lite 2.06.06,
- winlog lite 2.06.09,
- winlog lite 2.06.10,
- winlog lite 2.06.12,
- winlog lite 2.06.13,
- winlog lite 2.06.14,
- winlog lite 2.06.18,
- winlog lite 2.06.21,
- winlog lite 2.06.24,
- winlog lite 2.06.25,
- winlog lite 2.06.28,
- winlog lite 2.06.40,
- winlog lite 2.06.46,
- winlog lite 2.06.50,
- winlog lite 2.06.60,
- winlog lite 2.06.73,
- winlog lite 2.06.86,
- winlog lite 2.07.00,
- winlog lite 2.07.01,
- winlog lite 2.07.08,
- winlog lite 2.07.09,
- winlog lite 2.07.11,
- winlog lite 2.07.14,
- winlog lite 2.07.16,
- winlog pro,
- winlog pro 2.06.00,
- winlog pro 2.06.03,
- winlog pro 2.06.04,
- winlog pro 2.06.06,
- winlog pro 2.06.09,
- winlog pro 2.06.10,
- winlog pro 2.06.12,
- winlog pro 2.06.13,
- winlog pro 2.06.14,
- winlog pro 2.06.18,
- winlog pro 2.06.21,
- winlog pro 2.06.24,
- winlog pro 2.06.25,
- winlog pro 2.06.28,
- winlog pro 2.06.40,
- winlog pro 2.06.46,
- winlog pro 2.06.50,
- winlog pro 2.06.60,
- winlog pro 2.06.73,
- winlog pro 2.06.86,
- winlog pro 2.07.00,
- winlog pro 2.07.01,
- winlog pro 2.07.08,
- winlog pro 2.07.09,
- winlog pro 2.07.11,
- winlog pro 2.07.14,
- winlog pro 2.07.16
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
