发布日期:2013-07-30
更新日期:2013-07-31受影响系统:
ge-ip Proficy CIMPLICITY 8.x
描述:
--------------------------------------------------------------------------------
CVE(CAN) ID: CVE-2013-2785GE Proficy CIMPLICITY是客户端/服务器业务可视化和控制解决方案。Proficy HMI/SCADA - CIMPLICITY 8.2、8.1、8.0版本在解码密码时,CimWebServer组件存在边界错误,szPassword字段超长的请求会造成栈缓冲区溢出;在处理Broadcase/Init时,CimWebServer组件存在边界错误,szOptions字段超长的请求会造成栈缓冲区溢出。<*来源:ZombiE
amisto0x07
链接:http://secunia.com/advisories/54348/
*>建议:
--------------------------------------------------------------------------------
厂商补丁:ge-ip
-----
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:http://www.ge-ip.com/products/proficy-hmi-scada-cimplicity/p2819Proficy HMI/SCADA – CIMPLICITY 8.2 SIM 19:
http://support.ge-ip.com/support/index?page=dwchannel&id=DN4014
Proficy HMI/SCADA – CIMPLICITY 8.1 SIM 25:
http://support.ge-ip.com/support/index?page=dwchannel&id=DN4024
Proficy HMI/SCADA – CIMPLICITY 8.0 SIM 27:
http://support.ge-ip.com/support/index?page=dwchannel&id=DN4013IDA Pro WinDbg插件和Hint Calculation漏洞Google Chrome 28.0.1500.95之前版本多个安全漏洞相关资讯 GE Proficy CIMPLICITY
- GE Proficy CIMPLICITY " (07/30/2013 20:14:33)
本文评论 查看全部评论 (0)
评论声明- 尊重网上道德,遵守中华人民共和国的各项有关法律法规
- 承担一切因您的行为而直接或间接导致的民事或刑事法律责任
|
易网时代-编程资源站