CVE-2015-1007
published 2019-03-25CVE-2015-1007: A specially crafted configuration file could be used to cause a stack-based buffer overflow condition in the OPCTest.exe, which may allow remote code execution…
PriorityP342high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
EPSS
2.67%
83.8th percentile
A specially crafted configuration file could be used to cause a stack-based buffer overflow condition in the OPCTest.exe, which may allow remote code execution on Opto 22 PAC Project Professional versions prior to R9.4008, PAC Project Basic versions prior to R9.4008, PAC Display Basic versions prior to R9.4g, PAC Display Professional versions prior to R9.4g, OptoOPCServer version R9.4c and prior that were installed by PAC Project installer, versions prior to R9.4008, and OptoDataLink version R9.4d and prior that were installed by PAC Project installer, versions prior to R9.4008. Opto 22 suggests upgrading to the new product version as soon as possible.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| opto22 | optodatalink | <= r9.4d | — |
| opto22 | optoopcserver | <= r9.4c | — |
| opto22 | pac_display | < r9.4g | r9.4g |
| opto22 | pac_project | < r9.4008 | r9.4008 |
| opto_22 | optodatalink | — | — |
| opto_22 | optoopcserver | — | — |
| opto_22 | pac_display_basic | < R9.4g | R9.4g |
| opto_22 | pac_display_professional | < R9.4g | R9.4g |
| opto_22 | pac_project_basic | < R9.4008 | R9.4008 |
| opto_22 | pac_project_professional | < R9.4008 | R9.4008 |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Opto 22 Multiple Product Vulnerabilities
cisa_ics·2018-10-18
Opto 22 Multiple Product Vulnerabilities
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Opto 22 Multiple Product Vulnerabilities
Last RevisedOctober 18, 2018
Alert CodeICSA-15-120-01
## OVERVIEW
Ivan Sanchez from Nullcode Team has identified two buffer overflow vulnerabilities that are present in Opto 22’s PAC Project Professional, PAC Project Basic, OptoOPCServer, OptoDataLink, PAC Display Basic, and PAC Display Professional products. Opto 22 has released new versions that mitigate these vulnerabilities. Ivan Sanchez has tested the new versions to validate that they resolve the vulnerabilities.
One of the two vulnerabilities could be exploited remotely.
## AFFEC
GHSA
GHSA-qg83-5693-xjqm: A specially crafted configuration file could be used to cause a stack-based buffer overflow condition in the OPCTest
ghsa_unreviewed·2022-05-13
CVE-2015-1007 [HIGH] CWE-119 GHSA-qg83-5693-xjqm: A specially crafted configuration file could be used to cause a stack-based buffer overflow condition in the OPCTest
A specially crafted configuration file could be used to cause a stack-based buffer overflow condition in the OPCTest.exe, which may allow remote code execution on Opto 22 PAC Project Professional versions prior to R9.4008, PAC Project Basic versions prior to R9.4008, PAC Display Basic versions prior to R9.4g, PAC Display Professional versions prior to R9.4g, OptoOPCServer version R9.4c and prior that were installed by PAC Project installer, versions prior to R9.4008, and OptoDataLink version R9.4d and prior that were installed by PAC Project installer, versions prior to R9.4008. Opto 22 suggests upgrading to the new product version as soon as possible.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2015-1914 IBM JDK: unspecified partial Java sandbox restrictions bypass
bugzilla·2015-05-06·CVSS 5.0
CVE-2015-1914 [MEDIUM] CVE-2015-1914 IBM JDK: unspecified partial Java sandbox restrictions bypass
CVE-2015-1914 IBM JDK: unspecified partial Java sandbox restrictions bypass
IBM JDK versions 5.0 SR16-FP10, 6 SR16-FP4, 6R1 SR8-FP4, 7 SR9, 7R1 SR3 and 8 SR1 correct an unspecified Java sandbox bypass issue described by upstream as:
A vulnerability in the IBM implementation of the Java Virtual Machine may allow untrusted code running under a security manager to bypass permission checks and view sensitive information.
References:
http://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_May_2015
http://www-01.ibm.com/support/docview.wss?uid=swg21883640
Discussion:
This issue has been addressed in the following products:
Supplementary for Red Hat Enterprise Linux 5
Via RHSA-2015:1007 https://rhn.redhat.com/errata/RHSA-2015-1007.html
---
This issue has been addressed in
Bugzilla
CVE-2015-0192 IBM JDK: unspecified Java sandbox restrictions bypass
bugzilla·2015-05-06·CVSS 7.5
CVE-2015-0192 [HIGH] CVE-2015-0192 IBM JDK: unspecified Java sandbox restrictions bypass
CVE-2015-0192 IBM JDK: unspecified Java sandbox restrictions bypass
IBM JDK versions 5.0 SR16-FP10, 6 SR16-FP4, 6R1 SR8-FP4, 7 SR9, 7R1 SR3 and 8 SR1 correct an unspecified Java sandbox bypass issue described by upstream as:
A vulnerability in the IBM implementation of the Java Virtual Machine may, under limited circumstances, allow untrusted code running under a security manager to elevate its privileges.
References:
http://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_May_2015
http://www-01.ibm.com/support/docview.wss?uid=swg21883640
Discussion:
This issue has been addressed in the following products:
Supplementary for Red Hat Enterprise Linux 5
Via RHSA-2015:1007 https://rhn.redhat.com/errata/RHSA-2015-1007.html
---
This issue has been addressed in the follow
2019-03-25
Published