CVSS: 10.0EPSS: 22%CPEs: 8EXPL: 0CVE-2012-0229 – GE Proficy Historian ihDataArchiver.exe Multiple Opcode Parsing Remote Code Execution Vulnerabilities
https://notcve.org/view.php?id=CVE-2012-0229
The Data Archiver service in GE Intelligent Platforms Proficy Historian 4.5 and earlier allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted session on TCP port 14000 to (1) ihDataArchiver.exe or (2) ihDataArchiver_x64.exe. El servicio Data Archiver service en GE Intelligent Platforms Proficy Historian v4.5 y anteriores permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o posiblemente ejecutar código a través de una sesión TCP manipulada en el puerto 14000 sobre (1) ihDataArchiver.exe o (2) ihDataArchiver_x64.exe. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE iFix. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ihDataArchiver.exe process which listens by default on TCP port 14000. Several errors are present in the code responsible for parsing data from the network. • http://secunia.com/advisories/48369 http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB14767 http://www.securityfocus.com/bid/52437 http://www.us-cert.gov/control_systems/pdf/ICSA-12-032-01.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2011-3320
https://notcve.org/view.php?id=CVE-2011-3320
Cross-site scripting (XSS) vulnerability in the Web Administrator component in GE Intelligent Platforms Proficy Historian 4.x and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en el componente Web Administrator en GE Intelligent Platforms Proficy Historian v4.x y anteriores, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través del parámetro no especificados. • http://www.securityfocus.com/bid/50473 http://www.us-cert.gov/control_systems/pdf/ICSA-11-243-02.pdf • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 17%CPEs: 2EXPL: 0CVE-2011-1918 – GE Proficy Historian ihDataArchiver.exe Trusted Header Size Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-1918
Stack-based buffer overflow in the Data Archiver service in GE Intelligent Platforms Proficy Historian before 3.5 SIM 17 and 4.x before 4.0 SIM 12 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via crafted TCP message traffic. Desbordamiento de buffer de pila en el servicio "Data Archiver" de GE Intelligent Platforms Proficy Historian en versiones anteriores a la 3.5 SIM 17 y 4.x anteriores a 4.0 SIM 12. Permite a atacantes remotos provocar una denegación de servicio (caída del demonio) o posiblemente ejecutar código arbitrario a través de tráfico TCP modificado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE Proficy Historian. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ihDataArchiver.exe process which listens by default on TCP port 14000. • http://ics-cert.us-cert.gov/advisories/ICSA-11-243-03A http://www.securityfocus.com/bid/50475 http://www.us-cert.gov/control_systems/pdf/ICSA-11-243-03.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 4%CPEs: 3EXPL: 0CVE-2011-1919
https://notcve.org/view.php?id=CVE-2011-1919
Multiple stack-based buffer overflows in GE Intelligent Platforms Proficy Applications before 4.4.1 SIM 101 and 5.x before 5.0 SIM 43 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via crafted TCP message traffic to (1) PRProficyMgr.exe in Proficy Server Manager, (2) PRGateway.exe in Proficy Server Gateway, (3) PRRDS.exe in Proficy Remote Data Service, or (4) PRLicenseMgr.exe in Proficy Server License Manager. Múltiples desbordamientos de buffer basado en pila en GE Intelligent Platforms Proficy Applications anterior a 4.4.1 SIM 101 y 5.x anterior a 5.0 SIM 43 permiten a atacantes remotos causar una denegación de servicio (caída de demonio) o posiblemente ejecutar código arbitrario a través de trafico manipulado de mensajes TCP en (1) PRProficyMgr.exe en Proficy Server Manager, (2) PRGateway.exe en Proficy Server Gateway, (3) PRRDS.exe en Proficy Remote Data Service, o (4) PRLicenseMgr.exe en Proficy Server License Manager. • http://www.securityfocus.com/bid/50474 http://www.us-cert.gov/control_systems/pdf/ICSA-11-243-01.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •