CVE-2018-0651
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Buffer overflow in the license management function of YOKOGAWA products (iDefine for ProSafe-RS R1.16.3 and earlier, STARDOM VDS R7.50 and earlier, STARDOM FCN/FCJ Simulator R4.20 and earlier, ASTPLANNER R15.01 and earlier, TriFellows V5.04 and earlier) allows remote attackers to stop the license management function or execute an arbitrary program via unspecified vectors.
Un desbordamiento de búfer en la función license management de los productos YOKOGAWA (iDefine para ProSafe-RS R1.16.3 y anteriores, STARDOM VDS R7.50 y anteriores, STARDOM FCN/FCJ Simulator R4.20 y anteriores, ASTPLANNER R15.01 y anteriores y TriFellows V5.04 y anteriores) permite a los atacantes remotos detener la función license management o ejecutar un programa arbitrario mediante vectores sin especificar.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-11-27 CVE Reserved
- 2019-01-09 CVE Published
- 2024-08-05 CVE Updated
- 2024-12-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/105124 | Third Party Advisory | |
| https://jvn.jp/vu/JVNVU93845358 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://web-material3.yokogawa.com/YSAR-18-0006-E.pdf | 2019-02-11 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Yokogawa Search vendor "Yokogawa" | Idefine For Prosafe-rs Firmware Search vendor "Yokogawa" for product "Idefine For Prosafe-rs Firmware" | <= r1.16.3 Search vendor "Yokogawa" for product "Idefine For Prosafe-rs Firmware" and version " <= r1.16.3" | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Idefine For Prosafe-rs Search vendor "Yokogawa" for product "Idefine For Prosafe-rs" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Stardom Versatile Data Server Firmware Search vendor "Yokogawa" for product "Stardom Versatile Data Server Firmware" | <= r7.50 Search vendor "Yokogawa" for product "Stardom Versatile Data Server Firmware" and version " <= r7.50" | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Stardom Versatile Data Server Search vendor "Yokogawa" for product "Stardom Versatile Data Server" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Stardom Fcn\/fcj Simulator Firmware Search vendor "Yokogawa" for product "Stardom Fcn\/fcj Simulator Firmware" | <= r4.20 Search vendor "Yokogawa" for product "Stardom Fcn\/fcj Simulator Firmware" and version " <= r4.20" | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Stardom Fcn\/fcj Simulator Search vendor "Yokogawa" for product "Stardom Fcn\/fcj Simulator" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Astplanner Search vendor "Yokogawa" for product "Astplanner" | <= r15.01 Search vendor "Yokogawa" for product "Astplanner" and version " <= r15.01" | - |
Affected
| ||||||
| Yokogawa Search vendor "Yokogawa" | Trifellows Search vendor "Yokogawa" for product "Trifellows" | <= v5.04 Search vendor "Yokogawa" for product "Trifellows" and version " <= v5.04" | - |
Affected
| ||||||