CVE-2014-9200

Name of the Vulnerable Software and Affected Versions Schneider Electric Unity Pro versions prior to the fixed version Schneider Electric SoMachine versions prior to the fixed version Schneider Electric SoMove versions prior to the fixed version Schneider Electric SoMove Lite versions prior to the fixed version Modbus Communication Library versions prior to 2.2.7 CANopen Communication Library versions prior to 1.0.3 EtherNet/IP Communication Library versions prior to 1.0.1 EM X80 Gateway DTM (MB TCP/SL) versions prior to the fixed version Advantys DTM for OTB versions prior to the fixed version Advantys DTM for STB versions prior to the fixed version KINOS DTM versions prior to the fixed version SOLO DTM versions prior to the fixed version Xantrex DTMs versions prior to the fixed version

Description A stack-based buffer overflow issue exists in an unspecified DLL file within certain Schneider Electric products. This issue allows remote attackers to execute arbitrary code via unspecified vectors.

Recommendations For Schneider Electric Unity Pro, update to a version that includes the fix for this issue. For Schneider Electric SoMachine, update to a version that includes the fix for this issue. For Schneider Electric SoMove, update to a version that includes the fix for this issue. For Schneider Electric SoMove Lite, update to a version that includes the fix for this issue. For Modbus Communication Library, update to version 2.2.7 or later. For CANopen Communication Library, update to version 1.0.3 or later. For EtherNet/IP Communication Library, update to version 1.0.1 or later. For EM X80 Gateway DTM (MB TCP/SL), update to a version that includes the fix for this issue. For Advantys DTM for OTB, update to a version that includes the fix for this issue. For Advantys DTM for STB, update to a version that includes the fix for this issue. For KINOS DTM, update to a version that includes the fix for this issue. For SOLO DTM, update to a version that includes the fix for this issue. For Xantrex DTMs, update to a version that includes the fix for this issue.