First published: Thu Jul 28 2011(Updated: )
Unspecified vulnerability in Rockwell Automation FactoryTalk Diagnostics Viewer before V2.30.00 (CPR9 SR3) allows local users to execute arbitrary code via a crafted FactoryTalk Diagnostics Viewer (.ftd) configuration file, which triggers memory corruption.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Rockwell Automation FactoryTalk Diagnostics Viewer | <=2.10.02 | |
Rockwell Automation FactoryTalk Diagnostics Viewer | =2.10.01 | |
Rockwell Automation FactoryTalk Diagnostics Viewer | =2.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2011-2957 is classified with a medium severity due to its ability to allow local users to execute arbitrary code.
To fix CVE-2011-2957, upgrade the Rockwell Automation FactoryTalk Diagnostics Viewer to version 2.30.00 or later.
CVE-2011-2957 affects users of Rockwell Automation FactoryTalk Diagnostics Viewer versions prior to 2.30.00.
CVE-2011-2957 allows local users to perform arbitrary code execution through a crafted .ftd configuration file.
CVE-2011-2957 is a local vulnerability, requiring local access to exploit.