Published: 13/02/2017 Updated: 28/10/2021

CVSS v2 Base Score: 6 | Impact Score: 6.4 | Exploitability Score: 6.8

CVSS v3 Base Score: 8 | Impact Score: 5.9 | Exploitability Score: 2.1

VMScore: 605

Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P

An issue exists in Fatek Automation PLC WinProladder Version 3.11 Build 14701. A stack-based buffer overflow vulnerability exists when the software application connects to a malicious server, resulting in a stack buffer overflow. This causes an exploitable Structured Exception Handler (SEH) overwrite condition that may allow remote code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
fatek plc_winproladder_firmware 3.11

require 'msf/core' class MetasploitModule < Msf::Exploit::Remote Rank = GreatRanking include Msf::Exploit::Remote::TcpServer def initialize(info = {}) super(update_info(info, 'Name' => 'Fatek Automation PLC WinProladder Stack-based Buffer Overflow', 'Description' => %q{ This module exploits a stack based buff ...

CWE-119 https://ics-cert.us-cert.gov/advisories/ICSA-16-350-01 http://www.securityfocus.com/bid/94938 https://www.exploit-db.com/exploits/42700/https://nvd.nist.gov https://www.exploit-db.com/exploits/42700/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-8377

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect