PT-2014-3843 · Schneider Electric · Schneider Electric Opc Factory Server

Publicado

2014-04-04

Atualizado

2025-09-25

CVE-2014-0789

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Schneider Electric OPC Factory Server (OFS) versions 3.5 and earlier

Description The issue is related to multiple buffer overflows in the OPC Automation 2.0 Server Object ActiveX control. This can be exploited by remote attackers to cause a denial of service via long arguments to unspecified functions.

Recommendations For versions 3.5 and earlier, update to a version later than 3.5 to resolve the issue.

Correção

DoS

Heap Based Buffer Overflow

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-122CWE-119

Identificadores relacionados

CVE-2014-0789

Produtos afetados

Schneider Electric Opc Factory Server

PT-2014-3843 · Schneider Electric · Schneider Electric Opc Factory Server

CVE-2014-0789

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6