NVD

Id
36488  
Name
CVE-2013-0108  
Description
An ActiveX control in HscRemoteDeploy.dll in Honeywell Enterprise Buildings Integrator (EBI) R310, R400.2, R410.1, and R410.2; SymmetrE R310, R410.1, and R410.2; ComfortPoint Open Manager (aka CPO-M) Station R100; and HMIWeb Browser client packages allows remote attackers to execute arbitrary code via a crafted HTML document.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-18  
Published
2013-02-24  
Modified Date
2013-02-25  
Seq
2013-0108  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
186411 36488 CVE-2013-0108 http://ics-cert.us-cert.gov/pdf/ICSA-13-053-02.pdf  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
20101 JVNDB-2013-001676 複数の Honeywell 製品の HscRemoteDeploy.dll における任意のコードを実行される脆弱性 複数の Honeywell 製品の HscRemoteDeploy.dll 内の ActiveX コントロールには、任意のコードを実行される脆弱性が存在します。 CVE-2013-0108 60050 CVE-2013-0108 36488 6.8 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001676.html 2013-02-24 2013-02-27 View