Vulnerability Details CVE-2011-3141
Buffer overflow in the InBatch BatchField ActiveX control for Invensys Wonderware InBatch 8.1 SP1, 9.0, and 9.0 SP1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.037
EPSS Ranking 87.4%
CVSS Severity
CVSS v2 Score 9.3
References
- http://iom.invensys.com/EN/pdfLibrary/Final.Tech.Alert.141.pdf
- http://secunia.com/advisories/44336
- http://www.osvdb.org/72182
- http://www.us-cert.gov/control_systems/pdf/ICSA-11-094-01.pdf
- http://iom.invensys.com/EN/pdfLibrary/Final.Tech.Alert.141.pdf
- http://secunia.com/advisories/44336
- http://www.osvdb.org/72182
- http://www.us-cert.gov/control_systems/pdf/ICSA-11-094-01.pdf
Products affected by CVE-2011-3141
-
cpe:2.3:a:invensys:wonderware_inbatch:8.1
-
cpe:2.3:a:invensys:wonderware_inbatch:9.0