KLA10300
ACE vulnerability in GE IP products
Обновлено: 17/06/2019
Дата обнаружения
04/07/2012
Уровень угрозы
Critical
Описание

A buffer overflow was found in GE IP products. By exploiting this vulnerability malicious users can execute arbitrary code and commands. This vulnerability can be exploited remotely via a specially designed input.

Пораженные продукты

Proficy Historian versions 4.5, 4.0, 3.5, and 3.1
Proficy HMI/SCADA – iFIX versions 5.1 and 5.0
Proficy Pulse version 1.0
Proficy Batch Execution version 5.6
SI7 I/O Driver versions from 7.20 to 7.42

Решение

Update to latest version

Первичный источник обнаружения
GE IP bulletin
Оказываемое влияние
?
ACE 
[?]
Связанные продукты
Proficy HMI/SCADA iFIX
CVE-IDS
CVE-2012-25159.3Critical
CVE-2012-25169.3Critical