CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-3493

Multiple stack-based buffer overflows in the DH_OneSecondTick function in Cogent DataHub 7.1.1.63 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) domain, (2) report_domain, (3) register_datahub, or (4) slave commands.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.201

EPSS Ranking 95.2%

CVSS Severity

CVSS v2 Score 10.0

References

http://aluigi.altervista.org/adv/cogent_1-adv.txt
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-256-03.pdf
http://aluigi.altervista.org/adv/cogent_1-adv.txt
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-256-03.pdf

Products affected by CVE-2011-3493

Cogentdatahub » Cogent Datahub » Version: 7.0

cpe:2.3:a:cogentdatahub:cogent_datahub:7.0
Cogentdatahub » Cogent Datahub » Version: 7.0.2

cpe:2.3:a:cogentdatahub:cogent_datahub:7.0.2
Cogentdatahub » Cogent Datahub » Version: 7.1.0

cpe:2.3:a:cogentdatahub:cogent_datahub:7.1.0
Cogentdatahub » Cogent Datahub » Version: 7.1.1

cpe:2.3:a:cogentdatahub:cogent_datahub:7.1.1
Cogentdatahub » Cogent Datahub » Version: 7.1.1.63

cpe:2.3:a:cogentdatahub:cogent_datahub:7.1.1.63

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-3493

Products

Pricing

Contact Us