CVE-2010-4142

Name of the Vulnerable Software and Affected Versions DATAC RealWin versions 2.0 Build 6.1.8.10 and earlier DATAC RealWin version 1.06

Description The issue is related to multiple stack-based buffer overflows that can be triggered by remote attackers. This can lead to a denial of service, causing the system to crash, and potentially allow the execution of arbitrary code. The overflows can occur via a long packet, specifically through the SCPC INITIALIZE, SCPC INITIALIZE RF, or SCPC TXTEVENT packets.

Recommendations For DATAC RealWin versions 2.0 Build 6.1.8.10 and earlier, consider restricting access to the SCPC INITIALIZE, SCPC INITIALIZE RF, and SCPC TXTEVENT packets until a patch is available. For DATAC RealWin version 1.06, avoid using the vulnerable packet that is affected by one of these requests until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.