CVE-2012-0229

Name of the Vulnerable Software and Affected Versions GE Intelligent Platforms Proficy Historian versions 4.5 and earlier

Description The issue allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted session on TCP port 14000 to either ihDataArchiver.exe or ihDataArchiver x64.exe. This is related to the Data Archiver service and multiple opcode parsing remote code execution vulnerabilities.

Recommendations For versions 4.5 and earlier, consider restricting access to TCP port 14000 as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.