Vulnerability Details CVE-2011-2959
Stack-based buffer overflow in the Open Database Connectivity (ODBC) service (Odbcixv9se.exe) in 7-Technologies Interactive Graphical SCADA System (IGSS) 9 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet to TCP port 22202.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.023
EPSS Ranking 83.9%
CVSS Severity
CVSS v2 Score 10.0
References
- http://secunia.com/advisories/44345
- http://www.insomniasec.com/advisories/ISVA-110427.1.htm
- http://www.osvdb.org/72117
- http://www.us-cert.gov/control_systems/pdf/ICSA-11-119-01.pdf
- http://secunia.com/advisories/44345
- http://www.insomniasec.com/advisories/ISVA-110427.1.htm
- http://www.osvdb.org/72117
- http://www.us-cert.gov/control_systems/pdf/ICSA-11-119-01.pdf
Products affected by CVE-2011-2959
-
cpe:2.3:a:7t:igss:*
-
cpe:2.3:a:7t:igss:2.0
-
cpe:2.3:a:7t:igss:3.0
-
cpe:2.3:a:7t:igss:4.1
-
cpe:2.3:a:7t:igss:5.0
-
cpe:2.3:a:7t:igss:5.1
-
cpe:2.3:a:7t:igss:6
-
cpe:2.3:a:7t:igss:7
-
cpe:2.3:a:7t:igss:8