Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2011-1567

Published: 05/04/2011 Updated: 22/09/2011
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Igss

Vulnerability Summary

Multiple stack-based buffer overflows in IGSSdataServer.exe 9.00.00.11063 and previous versions in 7-Technologies Interactive Graphical SCADA System (IGSS) allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via crafted (1) ListAll, (2) Write File, (3) ReadFile, (4) Delete, (5) RenameFile, and (6) FileInfo commands in an 0xd opcode; (7) the Add, (8) ReadFile, (9) Write File, (10) Rename, (11) Delete, and (12) Add commands in an RMS report templates (0x7) opcode; and (13) 0x4 command in an STDREP request (0x8) opcode to TCP port 12401.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

7t igss

Exploits

Exploit DB: 7-Technologies IGSS 9.00.00.11059 - Multiple Vulnerabilities
Sources: aluigiorg/adv/igss_1-advtxt aluigiorg/adv/igss_2-advtxt aluigiorg/adv/igss_3-advtxt aluigiorg/adv/igss_4-advtxt aluigiorg/adv/igss_5-advtxt aluigiorg/adv/igss_6-advtxt aluigiorg/adv/igss_7-advtxt aluigiorg/adv/igss_8-advtxt Advisory Archive: githubcom/offensi ...
Exploit DB: 7-Technologies IGSS 9.00.00 b11063 - 'IGSSdataServer.exe' Remote Stack Overflow (Metasploit)
## # $Id: igss9_igssdataserver_listallrb 12639 2011-05-16 19:30:17Z sinn3r $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'ms ...
Exploit DB: 7-Technologies IGSS 9 - IGSSdataServer .Rms Rename Buffer Overflow (Metasploit)
## # $Id: igss9_igssdataserver_renamerb 12886 2011-06-09 06:04:04Z sinn3r $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf ...

References

CWE-119http://aluigi.org/adv/igss_3-adv.txthttp://www.vupen.com/english/advisories/2011/0741http://secunia.com/advisories/43849http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-080-03.pdfhttp://aluigi.org/adv/igss_7-adv.txthttp://aluigi.org/adv/igss_2-adv.txthttp://aluigi.org/adv/igss_4-adv.txthttp://www.exploit-db.com/exploits/17024http://www.securityfocus.com/bid/46936http://aluigi.org/adv/igss_5-adv.txthttp://securityreason.com/securityalert/8251http://securityreason.com/securityalert/8179https://nvd.nist.govhttps://www.exploit-db.com/exploits/17024/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook