cbcvebase.
CVE-2012-3797
published 2012-06-25

CVE-2012-3797: Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, does not properly check packet sizes before…

PriorityP354critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
12.50%
95.7th percentile
Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, does not properly check packet sizes before reusing packet memory buffers, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a short crafted packet with a certain opcode.

Affected

5 ranges
VendorProductVersion rangeFixed in
pro-facepro-server_ex<= 1.30.000
pro-facepro-server_ex
pro-facepro-server_ex
pro-facepro-server_ex
pro-facewingp_pc_runtime<= 3.1.00
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.