CVE-2012-5409

Name of the Vulnerable Software and Affected Versions Siemens SiPass integrated versions MP2.6 and earlier

Description The issue arises from improper handling of IOCP RPC messages by AscoServer.exe in the server, allowing remote attackers to write data to any memory location and execute arbitrary code via crafted messages. This can be achieved through methods such as an arbitrary pointer dereference attack or a buffer overflow attack.

Recommendations For versions MP2.6 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.