CVE-2015-5628
Summary
| CVE | CVE-2015-5628 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-02-05 19:15:00 UTC |
| Updated | 2020-02-12 20:16:00 UTC |
| Description | Stack-based buffer overflow in Yokogawa CENTUM CS 1000 R3.08.70 and earlier, CENTUM CS 3000 R3.09.50 and earlier, CENTUM CS 3000 Entry R3.09.50 and earlier, CENTUM VP R5.04.20 and earlier, CENTUM VP Entry R5.04.20 and earlier, ProSafe-RS R3.02.10 and earlier, Exaopc R3.72.00 and earlier, Exaquantum R2.85.00 and earlier, Exaquantum/Batch R2.50.30 and earlier, Exapilot R3.96.10 and earlier, Exaplog R3.40.00 and earlier, Exasmoc R4.03.20 and earlier, Exarqe R4.03.20 and earlier, Field Wireless Device OPC Server R2.01.02 and earlier, PRM R3.12.00 and earlier, STARDOM VDS R7.30.01 and earlier, STARDOM OPC Server for Windows R3.40 and earlier, FAST/TOOLS R10.01 and earlier, B/M9000CS R5.05.01 and earlier, B/M9000 VP R7.03.04 and earlier, and FieldMate R1.01 or R1.02 allows remote attackers to execute arbitrary code via a crafted packet. |
Risk And Classification
Problem Types: CWE-787
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Yokogawa | B/m9000cs | - | All | All | All |
| Operating System | Yokogawa | B/m9000cs Firmware | All | All | All | All |
| Hardware | Yokogawa | B/m9000 Vp | - | All | All | All |
| Operating System | Yokogawa | B/m9000 Vp Firmware | All | All | All | All |
| Hardware | Yokogawa | B/m9000cs | - | All | All | All |
| Hardware | Yokogawa | B/m9000cs | - | All | All | All |
| Operating System | Yokogawa | B/m9000cs Firmware | All | All | All | All |
| Hardware | Yokogawa | B/m9000 Vp | - | All | All | All |
| Hardware | Yokogawa | B/m9000 Vp | - | All | All | All |
| Operating System | Yokogawa | B/m9000 Vp Firmware | All | All | All | All |
| Hardware | Yokogawa | Centum Cs 1000 | - | All | All | All |
| Hardware | Yokogawa | Centum Cs 1000 | - | All | All | All |
| Operating System | Yokogawa | Centum Cs 1000 Firmware | All | All | All | All |
| Hardware | Yokogawa | Centum Cs 3000 | - | All | All | All |
| Hardware | Yokogawa | Centum Cs 3000 | - | All | All | All |
| Hardware | Yokogawa | Centum Cs 3000 Entry | - | All | All | All |
| Hardware | Yokogawa | Centum Cs 3000 Entry | - | All | All | All |
| Operating System | Yokogawa | Centum Cs 3000 Entry Firmware | All | All | All | All |
| Operating System | Yokogawa | Centum Cs 3000 Firmware | All | All | All | All |
| Hardware | Yokogawa | Centum Vp | - | All | All | All |
| Hardware | Yokogawa | Centum Vp | - | All | All | All |
| Hardware | Yokogawa | Centum Vp Entry | - | All | All | All |
| Hardware | Yokogawa | Centum Vp Entry | - | All | All | All |
| Operating System | Yokogawa | Centum Vp Entry Firmware | All | All | All | All |
| Operating System | Yokogawa | Centum Vp Firmware | All | All | All | All |
| Application | Yokogawa | Exaopc | All | All | All | All |
| Application | Yokogawa | Exapilot | All | All | All | All |
| Application | Yokogawa | Exaplog | All | All | All | All |
| Application | Yokogawa | Exaquantum | All | All | All | All |
| Application | Yokogawa | Exaquantum/batch | All | All | All | All |
| Application | Yokogawa | Exaquantum/batch | All | All | All | All |
| Application | Yokogawa | Exarqe | All | All | All | All |
| Application | Yokogawa | Exasmoc | All | All | All | All |
| Application | Yokogawa | Fieldmate | r1.01 | All | All | All |
| Application | Yokogawa | Fieldmate | r1.02 | All | All | All |
| Application | Yokogawa | Fieldmate | r1.01 | All | All | All |
| Application | Yokogawa | Fieldmate | r1.02 | All | All | All |
| Hardware | Yokogawa | Field Wireless Device Opc Server | - | All | All | All |
| Hardware | Yokogawa | Field Wireless Device Opc Server | - | All | All | All |
| Operating System | Yokogawa | Field Wireless Device Opc Server | All | All | All | All |
| Application | Yokogawa | Plant Resource Manager | All | All | All | All |
| Hardware | Yokogawa | Prosafe-rs | - | All | All | All |
| Hardware | Yokogawa | Prosafe-rs | - | All | All | All |
| Operating System | Yokogawa | Prosafe-rs Firmware | All | All | All | All |
| Application | Yokogawa | Scada Software Fast/tools | All | All | All | All |
| Application | Yokogawa | Scada Software Fast/tools | All | All | All | All |
| Hardware | Yokogawa | Stardom Opc Server | - | All | All | All |
| Hardware | Yokogawa | Stardom Opc Server | - | All | All | All |
| Operating System | Yokogawa | Stardom Opc Server | All | All | All | All |
| Application | Yokogawa | Versatile Data Server Software | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Sitemap | Yokogawa Electric Corporation | CONFIRM | www.yokogawa.com | Not Applicable |
| Yokogawa Multiple Products Buffer Overflow Vulnerabilities | ICS-CERT | MISC | ics-cert.us-cert.gov | Mitigation, Third Party Advisory, US Government Resource |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.