Lucene search
IcscertCVE-2014-9205HistoryMar 29, 2015 - 10:59 a.m.
CVE-2014-9205
2015-03-2910:59:02
CWE-119
icscert
web.nvd.nist.gov
30
cve-2014-9205
buffer overflow
pmbase64decode
microsys promotic
remote code execution
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.149
Percentile
95.8%
Stack-based buffer overflow in the PmBase64Decode function in an unspecified demonstration application in MICROSYS PROMOTIC stable before 8.2.19 and PROMOTIC development before 8.3.2 allows remote attackers to execute arbitrary code by providing a large amount of data.
Affected configurations
Node
microsyspromoticRange≤8.2.18stable
ORmicrosyspromoticRange≤8.3.1development
Related
nvd
nvd
CVE-2014-9205
2015-03-29 10:59:02
prion
prion
Stack overflow
2015-03-29 10:59:00
checkpoint_advisories
checkpoint_advisories
Microsys Promotic PmBase64Decode Buffer Overflow (CVE-2014-9205)
2015-04-13 00:00:00
ics
ics
MICROSYS PROMOTIC Stack Buffer Overflow
2018-08-27 12:00:00
zdi
zdi
MICROSYS PROMOTIC Stack Buffer Overflow Remote Code Execution Vulnerability
2015-03-12 00:00:00
cvelist
cvelist
CVE-2014-9205
2015-03-29 10:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.149
Percentile
95.8%
Related for CVE-2014-9205