CVE-2011-4052
published 2011-12-05CVE-2011-4052: Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote attackers to…
PriorityP343critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
5.94%
92.4th percentile
Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote attackers to execute arbitrary code via a crafted 0x15 (aka Remove File) operation for a file with a long name.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| indusoft | web_studio | — | — |
| indusoft | web_studio | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-qjv7-f6q6-v43j: Stack-based buffer overflow in CEServer
ghsa_unreviewed·2022-05-17
CVE-2011-4052 [HIGH] CWE-119 GHSA-qjv7-f6q6-v43j: Stack-based buffer overflow in CEServer
Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote attackers to execute arbitrary code via a crafted 0x15 (aka Remove File) operation for a file with a long name.
CISA ICS
InduSoft Web Studio Vulnerabilities
cisa_ics·2014-03-12
InduSoft Web Studio Vulnerabilities
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
InduSoft Web Studio Vulnerabilities
Last RevisedMarch 12, 2014
Alert CodeICSA-11-319-01
## Overview
ICS-CERT has become aware of a report from the Zero Day Initiative concerning two vulnerabilities in the InduSoft Web Studio software. This information was reported to Zero Day Initiative by independent security researcher Luigi Auriemma.
These vulnerabilities exploit unauthenticated remote code execution within the CEServer Operation and the CEServer.exe directories.
Zero Day Initiative has coordinated with InduSoft, who has produced a patch that mitigates these vulnerabilities
No detection rules found.
Exploit-DB
Cogent DataHub 7.1.1.63 - Stack Overflow
exploitdb·2011-09-14
CVE-2011-3493 Cogent DataHub 7.1.1.63 - Stack Overflow
Cogent DataHub 7.1.1.63 - Stack Overflow
---
#######################################################################
Luigi Auriemma
Application: Cogent DataHub
http://www.cogentdatahub.com/Products/Cogent_DataHub.html
Versions: ]
#######################################################################
3) The Code
http://aluigi.org/poc/cogent_1.dat
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/17838.dat
nc SERVER 4052 < cogent_1.dat
port 4053 uses the same protocol via SSL.
#######################################################################
4) Fix
No fix.
#######################################################################
Exploit-DB
GNU libc/regcomp(3) - Multiple Vulnerabilities
exploitdb·2011-01-07·CVSS 5.0
CVE-2010-4051 [MEDIUM] GNU libc/regcomp(3) - Multiple Vulnerabilities
GNU libc/regcomp(3) - Multiple Vulnerabilities
---
// source: http://securityreason.com/securityalert/8003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
[ GNU libc/regcomp(3) Multiple Vulnerabilities ]
Author: Maksymilian Arciemowicz
http://securityreason.com/
http://cxib.net/
Date:
- - Dis.: 01.10.2010
- - Pub.: 07.01.2011
CERT: VU#912279
CVE:
CVE-2010-4051
CVE-2010-4052
Affected (tested):
- - Ubuntu 10.10
- - Slackware 13
- - Gentoo 18.10.2010
- - FreeBSD 8.1 (grep(1))
- - NetBSD 5.0.2 (grep(1))
Original URL:
http://securityreason.com/achievement_securityalert/93
Exploit for proftpd:
http://cxib.net/stuff/proftpd.gnu.c
- --- 0.Description ---
The GNU C library is used as the C library in the GNU system and most
systems with the Linux kernel.
# define RE_DUP_MAX (0x7fff)
regc
No writeups or analysis indexed.
http://www.indusoft.com/hotfixes/hotfixes.phphttp://www.us-cert.gov/control_systems/pdf/ICSA-11-319-01.pdfhttp://www.zerodayinitiative.com/advisories/ZDI-11-329/http://www.indusoft.com/hotfixes/hotfixes.phphttp://www.us-cert.gov/control_systems/pdf/ICSA-11-319-01.pdfhttp://www.zerodayinitiative.com/advisories/ZDI-11-329/
2011-12-05
Published