SB2013020808 - Buffer overflow in Ecava IntegraXor
Published: February 8, 2013 Updated: August 11, 2020
Security Bulletin ID
SB2013020808
Severity
High
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Buffer overflow (CVE-ID: CVE-2012-4700)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Multiple buffer overflows in an ActiveX control in PE3DO32A.ocx in IntegraXor SCADA Server 4.00 build 4250.0 and earlier allow remote attackers to execute arbitrary code via a crafted HTML document.
Remediation
Install update from vendor's website.