CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
97.1%
Unspecified vulnerability in the Modbus/TCP Diagnostic function in MiniHMI.exe for the Automated Solutions Modbus Slave ActiveX Control before 1.5 allows remote attackers to corrupt the heap and possibly execute arbitrary code via malformed Modbus requests to TCP port 502.
Vendor | Product | Version | CPE |
---|---|---|---|
automated_solutions | modbus_slave_activex_control | * | cpe:2.3:a:automated_solutions:modbus_slave_activex_control:*:*:*:*:*:*:*:* |
dvlabs.tippingpoint.com/advisory/TPTI-07-15
osvdb.org/38259
www.automatedsolutions.com/pub/asmbslv/ReadMe.htm
www.kb.cert.org/vuls/id/981849
www.nessus.org/plugins/index.php?view=single&id=26066
www.securityfocus.com/archive/1/479967/100/0/threaded
www.securityfocus.com/bid/25713
www.securitytracker.com/id?1018707
exchange.xforce.ibmcloud.com/vulnerabilities/36677