CVE-2012-0230

Name of the Vulnerable Software and Affected Versions GE Intelligent Platforms Proficy Plant Applications versions 5.0 and earlier

Description The issue allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted TCP session on port 12299. This is due to a problem in PRRDS.exe within the Proficy Remote Data Service.

Recommendations For versions 5.0 and earlier, consider restricting access to port 12299 to minimize the risk of exploitation. As a temporary workaround, limiting the use of the Proficy Remote Data Service may help mitigate the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.