CVSS: 10.0EPSS: 17%CPEs: 2EXPL: 0CVE-2011-1918 – GE Proficy Historian ihDataArchiver.exe Trusted Header Size Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-1918
Stack-based buffer overflow in the Data Archiver service in GE Intelligent Platforms Proficy Historian before 3.5 SIM 17 and 4.x before 4.0 SIM 12 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via crafted TCP message traffic. Desbordamiento de buffer de pila en el servicio "Data Archiver" de GE Intelligent Platforms Proficy Historian en versiones anteriores a la 3.5 SIM 17 y 4.x anteriores a 4.0 SIM 12. Permite a atacantes remotos provocar una denegación de servicio (caída del demonio) o posiblemente ejecutar código arbitrario a través de tráfico TCP modificado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE Proficy Historian. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ihDataArchiver.exe process which listens by default on TCP port 14000. • http://ics-cert.us-cert.gov/advisories/ICSA-11-243-03A http://www.securityfocus.com/bid/50475 http://www.us-cert.gov/control_systems/pdf/ICSA-11-243-03.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 4%CPEs: 3EXPL: 0CVE-2011-1919
https://notcve.org/view.php?id=CVE-2011-1919
Multiple stack-based buffer overflows in GE Intelligent Platforms Proficy Applications before 4.4.1 SIM 101 and 5.x before 5.0 SIM 43 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via crafted TCP message traffic to (1) PRProficyMgr.exe in Proficy Server Manager, (2) PRGateway.exe in Proficy Server Gateway, (3) PRRDS.exe in Proficy Remote Data Service, or (4) PRLicenseMgr.exe in Proficy Server License Manager. Múltiples desbordamientos de buffer basado en pila en GE Intelligent Platforms Proficy Applications anterior a 4.4.1 SIM 101 y 5.x anterior a 5.0 SIM 43 permiten a atacantes remotos causar una denegación de servicio (caída de demonio) o posiblemente ejecutar código arbitrario a través de trafico manipulado de mensajes TCP en (1) PRProficyMgr.exe en Proficy Server Manager, (2) PRGateway.exe en Proficy Server Gateway, (3) PRRDS.exe en Proficy Remote Data Service, o (4) PRLicenseMgr.exe en Proficy Server License Manager. • http://www.securityfocus.com/bid/50474 http://www.us-cert.gov/control_systems/pdf/ICSA-11-243-01.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •