Release DateDec 24, 2011 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt against a Buffer Overflow vulnerability inGeneral Electric Proficy Historian. The vulnerability is caused by an error when the vulnerable software handles a malicious request. It allows a remote attacker to execute arbitrary code via sending a crafted request. |
Affected ProductsGeneral Electric Proficy Historian version 4.0.0.176General Electric Proficy Historian version 3.5.0.259 General Electric Proficy HMI SCADA - iFIX version 5.1 |
Recommended ActionsCurrently we are not aware of any vendor supplied patch for this issue. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-1918 |
