NVD

Id
9989  
Name
CVE-2011-3322  
Description
Core Server HMI Service (Coreservice.exe) in Scadatec Limited Procyon SCADA 1.06, and other versions before 1.14, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password to the Telnet (TCP/23) port, which triggers an out-of-bounds read or write, leading to a stack-based buffer overflow.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2011-09-15  
Modified Date
2012-02-13  
Seq
2011-3322  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
57213 9989 CVE-2011-3322 8374  View
57214 9989 CVE-2011-3322 17827  View
57215 9989 CVE-2011-3322 49480  View
57216 9989 CVE-2011-3322 http://www.stratsec.net/Research/Advisories/Procyon-Core-Server-HMI-Remote-Stack-Overflow  View
57217 9989 CVE-2011-3322 http://www.uscert.gov/control_systems/pdf/ICSA-11-216-01.pdf  View
57218 9989 CVE-2011-3322 procyon-telnet-bo(69632)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
31983 JVNDB-2011-002223 Scadatec Limited Procyon SCADA におけるスタックベースのバッファオーバーフローの脆弱性 Scadatec Limited Procyon SCADA の Core Server HMI Service (Coreservice.exe) には、スタックベースのバッファオーバーフローの脆弱性が存在します。 CVE-2011-3322 51229 CVE-2011-3322 9989 10 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002223.html 2011-09-15 2011-09-21 View