Eaton: >> Elcsoft Security Vulnerabilities
In Eaton ELCSoft versions 2.04.02 and prior, there are multiple cases where specially crafted files could cause a buffer overflow which, in turn, may allow remote execution of arbitrary code.
CVSS Score
5.3
EPSS Score
0.014
Published
2018-03-20
Stack-based buffer overflow in ELCSimulator in Eaton ELCSoft 2.4.01 and earlier allows remote attackers to execute arbitrary code via a long packet.
CVSS Score
7.3
EPSS Score
0.064
Published
2016-07-03
Heap-based buffer overflow in elcsoft.exe in Eaton ELCSoft 2.4.01 and earlier allows remote authenticated users to execute arbitrary code via a crafted file.
CVSS Score
6.0
EPSS Score
0.025
Published
2016-07-03