NVD

Id
11204  
Name
CVE-2011-4874  
Description
Use-after-free vulnerability in MICROSYS PROMOTIC before 8.1.7 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (data corruption and application crash) via a crafted project (aka .pra) file.  
Reject
 
CVSS Version
2  
CVSS Score
7.9  
Severity
High  
CVSS Base Score
7.9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
5.5  
CVSS Vector
(AV:A/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2012-04-13  
Modified Date
2013-02-14  
Seq
2011-4874  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
62018 11204 CVE-2011-4874 http://www.promotic.eu/en/pmdoc/News.htm#ver80107  View
62019 11204 CVE-2011-4874 52988  View
62020 11204 CVE-2011-4874 http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-03.pdf  View
62021 11204 CVE-2011-4874 promotic-project-file-code-exec(74846)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
26358 JVNDB-2012-002065 MICROSYS PROMOTIC における任意のコードを実行される脆弱性 MICROSYS PROMOTIC には、任意のコードを実行される、またはサービス運用妨害 (データ破損およびアプリケーションクラッシュ) 状態となる脆弱性が存在します。 CVE-2011-4874 52781 CVE-2011-4874 11204 7.9 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002065.html 2012-04-11 2012-04-16 View