PT-2015-7261 · Eaton Cooper Power Systems · Proview
David Formby
+1
·
Published
2015-12-23
·
Updated
2015-12-23
·
CVE-2015-6471
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Eaton Cooper Power Systems ProView versions 4.x through 5.x before 5.1
Description
The issue is related to the improper initialization of padding fields in Ethernet packets, which can be exploited by remote attackers to obtain sensitive information by reading packet data.
Recommendations
For versions 4.x through 5.x before 5.1, update to version 5.1 or later to resolve the issue.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Proview