CVE-2013-0662
published 2014-04-01CVE-2013-0662: Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary…
critical9.3CVSS 3.1
AVNACMAuNCCICAC
EXPLOIT
Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| schneider-electric | concept | <= 2.6 | — |
| schneider-electric | modbus_serial_driver | — | — |
| schneider-electric | modbus_serial_driver | — | — |
| schneider-electric | modbus_serial_driver | — | — |
| schneider-electric | modbuscommdtm_sl | <= 2.1.2 | — |
| schneider-electric | opc_factory_server | <= 3.5.0 | — |
| schneider-electric | opc_factory_server | — | — |
| schneider-electric | opc_factory_server | — | — |
| schneider-electric | pl7 | <= 4.5 | — |
| schneider-electric | powersuite | <= 2.6 | — |
| schneider-electric | sft2841 | <= 14.0 | — |
| schneider-electric | sft2841 | — | — |
| schneider-electric | somachine | <= 3.1 | — |
| schneider-electric | somachine | — | — |
| schneider-electric | somachine | — | — |
| schneider-electric | somove | <= 1.7 | — |
| schneider-electric | twidosuite | <= 2.31.04 | — |
| schneider-electric | unity_pro | <= 7.0 | — |
| schneider-electric | unity_pro | — | — |
| schneider-electric | unityloader | <= 2.3 | — |
| schneider_electric | somachine | — | — |