Wonderware SuiteLink Unallocated Unicode String Remote Denial of Service Vulnerability
BID:53563
Info
Wonderware SuiteLink Unallocated Unicode String Remote Denial of Service Vulnerability
| Bugtraq ID: | 53563 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2012-3007 |
| Remote: | Yes |
| Local: | No |
| Published: | May 15 2012 12:00AM |
| Updated: | Mar 19 2015 09:08AM |
| Credit: | Luigi Auriemma |
| Vulnerable: |
Wonderware InTouch 7.11 Wonderware InTouch 9.5 Wonderware InTouch 8.0 |
| Not Vulnerable: |
Wonderware InTouch 10.5 |
Discussion
Wonderware SuiteLink Unallocated Unicode String Remote Denial of Service Vulnerability
Wonderware SuiteLink is prone to a remote denial-of-service vulnerability.
Exploiting this issue allows remote attackers to crash the affected application, denying service to legitimate users.
Wonderware SuiteLink is prone to a remote denial-of-service vulnerability.
Exploiting this issue allows remote attackers to crash the affected application, denying service to legitimate users.
Exploit / POC
Wonderware SuiteLink Unallocated Unicode String Remote Denial of Service Vulnerability
Report indicates that proof-of-concept is available. Please see the references for more information.
Report indicates that proof-of-concept is available. Please see the references for more information.
Solution / Fix
Wonderware SuiteLink Unallocated Unicode String Remote Denial of Service Vulnerability
Solution:
Vendor updates are available. Please see the references for more information.
Solution:
Vendor updates are available. Please see the references for more information.
References
Wonderware SuiteLink Unallocated Unicode String Remote Denial of Service Vulnerability
References:
References:
- Wonderware Products Homepage (Wonderware)
- DOS Advisory (Wonderware)
- ICS-ALERT-12-136-01�??WONDERWARE SUITELINK UNALLOCATED UNICODE STRING (ICS-CERT)