CVE-2011-3330: Buffer Overflow
First published: Fri Nov 04 2011(Updated: )
Buffer overflow in the UnitelWay Windows Device Driver, as used in Schneider Electric Unity Pro 6 and earlier, OPC Factory Server 3.34, Vijeo Citect 7.20 and earlier, Telemecanique Driver Pack 2.6 and earlier, Monitor Pro 7.6 and earlier, and PL7 Pro 4.5 and earlier, allows local users, and possibly remote attackers, to execute arbitrary code via an unspecified system parameter.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Schneider-electric Opc Factory Server | <=3.34 | |
| Schneider-electric Vijeo Citect | <=7.20 | |
| Schneider-electric Telemecanique Driver Pack | <=2.6 | |
| Schneider-electric Monitor Pro | <=7.6 | |
| Schneider-electric Unity Pro | <=6.0 | |
| Schneider-electric Pl7 Pro | <=4.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.scada.schneider-electric.com/sites/scada/en/login/vijeo-citect-unitelway-windows-device-driver.page
- http://www.securityfocus.com/bid/50319
- http://www.securitytracker.com/id?1026234
- http://secunia.com/advisories/46534
- http://www.us-cert.gov/control_systems/pdf/ICSA-11-277-01.pdf
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70882
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/schneider-electric
- canonical/schneider-electric opc factory server
- version/schneider-electric opc factory server/3.34
- canonical/schneider-electric vijeo citect
- version/schneider-electric vijeo citect/7.20
- canonical/schneider-electric telemecanique driver pack
- version/schneider-electric telemecanique driver pack/2.6
- canonical/schneider-electric monitor pro
- version/schneider-electric monitor pro/7.6
- canonical/schneider-electric unity pro
- version/schneider-electric unity pro/6.0
- canonical/schneider-electric pl7 pro
- version/schneider-electric pl7 pro/4.5