This script is Copyright (C) 2012-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SCADA_WINLOG_2_07_18.NBINSielco Sistemi Winlog < 2.07.18 Multiple Vulnerabilities
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
98.4%
The remote host has a version of Sielco Sistemi Winlog prior to 2.07.18 that is affected by the following vulnerabilities:
-
A buffer overflow vulnerability exists in RunTime.exe could allow an attacker to execute arbitrary code on the remote host. It can be triggered by sending specially crafted packets to port 46824. (CVE-2012-3815)
-
There are multiple buffer overflows that can be triggered by sending a specially crafted packet with a negative integer after an opcode to port 46824. This may give attackers the ability to execute arbitrary code. (CVE-2012-4355, CVE-2012-4358)
Binary data scada_winlog_2_07_18.nbinRelated
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
98.4%