CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-4509

Heap-based buffer overflow in elcsoft.exe in Eaton ELCSoft 2.4.01 and earlier allows remote authenticated users to execute arbitrary code via a crafted file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.025

EPSS Ranking 84.9%

CVSS Severity

CVSS v3 Score 6.0

CVSS v2 Score 6.0

References

http://www.securityfocus.com/bid/91524
http://www.zerodayinitiative.com/advisories/ZDI-16-408
https://ics-cert.us-cert.gov/advisories/ICSA-16-182-01
http://www.securityfocus.com/bid/91524
http://www.zerodayinitiative.com/advisories/ZDI-16-408
https://ics-cert.us-cert.gov/advisories/ICSA-16-182-01

Products affected by CVE-2016-4509

Eaton » Elcsoft » Version: 1.00.08

cpe:2.3:a:eaton:elcsoft:1.00.08
Eaton » Elcsoft » Version: 2.4.01

cpe:2.3:a:eaton:elcsoft:2.4.01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-4509

Products

Pricing

Contact Us