First published: Mon Sep 29 2008(Updated: )
Buffer overflow in x87 before 3.5.5 in ABB Process Communication Unit 400 (PCU400) 4.4 through 4.6 allows remote attackers to execute arbitrary code via a crafted packet using the (1) IEC60870-5-101 or (2) IEC60870-5-104 communication protocol to the X87 web interface.
Credit: cret@cert.org
Affected Software | Affected Version | How to fix |
---|---|---|
ABB PCU400 | =4.6 | |
ABB PCU400 | =4.5 | |
ABB PCU400 | =4.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2008-2474 is considered critical due to the potential for remote code execution.
To fix CVE-2008-2474, it is recommended to upgrade the ABB Process Communication Unit 400 to version 4.7 or later.
CVE-2008-2474 affects ABB Process Communication Unit 400 versions 4.4, 4.5, and 4.6.
CVE-2008-2474 allows attackers to execute arbitrary code on the device via crafted packets.
CVE-2008-2474 involves the IEC60870-5-101 and IEC60870-5-104 communication protocols.