NVD

Id
29646  
Name
CVE-2014-0789  
Description
Multiple buffer overflows in the OPC Automation 2.0 Server Object ActiveX control in Schneider Electric OPC Factory Server (OFS) TLXCDSUOFS33 3.5 and earlier, TLXCDSTOFS33 3.5 and earlier, TLXCDLUOFS33 3.5 and earlier, TLXCDLTOFS33 3.5 and earlier, and TLXCDLFOFS33 3.5 and earlier allow remote attackers to cause a denial of service via long arguments to unspecified functions.  
Reject
 
CVSS Version
2  
CVSS Score
7.8  
Severity
High  
CVSS Base Score
7.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:C)  
Pub Date
2017-01-19  
Published
2014-04-04  
Modified Date
2014-04-04  
Seq
2014-0789  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
156802 29646 CVE-2014-0789 http://ics-cert.us-cert.gov/advisories/ICSA-14-093-01  View
156803 29646 CVE-2014-0789 http://www.schneider-electric.com/corporate/en/support/cybersecurity/viewer-news.page?c_filepath=/templatedata/Content/News/data/en/local/cybersecurity/general_information/2014/03/20140325_vulnerability_disclosure_opc_factory_server.xml  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
13030 JVNDB-2014-001905 複数の Schneider Electric OPC Factory Server 製品におけるバッファオーバーフローの脆弱性 複数の Schneider Electric OPC Factory Server (OFS) 製品の OPC Automation 2.0 Server Object ActiveX コントロールには、バッファオーバーフローの脆弱性が存在します。 CVE-2014-0789 68190 CVE-2014-0789 29646 7.8 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001905.html 2014-03-25 2014-04-07 View