Vulnerabilities > CVE-2011-1564 - Numeric Errors vulnerability in Realflex Realwin 1.06/2.0/2.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple integer overflows in the HMI application in DATAC RealFlex RealWin 2.1 (Build 6.1.10.10) and earlier allow remote attackers to execute arbitrary code via crafted (1) On_FC_MISC_FCS_MSGBROADCAST and (2) On_FC_MISC_FCS_MSGSEND packets, which trigger a heap-based buffer overflow.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Common Weakness Enumeration (CWE)
Exploit-Db
description | DATAC RealWin - Multiple Vulnerabilities. CVE-2011-1564. Dos exploit for windows platform |
file | exploits/windows/dos/17025.txt |
id | EDB-ID:17025 |
last seen | 2016-02-02 |
modified | 2011-03-22 |
platform | windows |
port | |
published | 2011-03-22 |
reporter | Luigi Auriemma |
source | https://www.exploit-db.com/download/17025/ |
title | DATAC RealWin - Multiple Vulnerabilities |
type | dos |
Saint
bid 46937 description RealFlex RealWin FC_SCRIPT_FCS_STARTPROG Buffer Overflow title datac_realwin_fcscriptfcsstartprog type remote bid 46937 description DATAC RealWin SCADA Server TAG function stack overflow title datac_realwin_tag_overflow type remote bid 46937 description RealFlex RealWin FC_RFUSER_FCS_LOGIN Buffer Overflow title datac_realwin_fcrfuserfcslogin type remote
References
- http://aluigi.org/adv/realwin_6-adv.txt
- http://secunia.com/advisories/43848
- http://securityreason.com/securityalert/8177
- http://www.exploit-db.com/exploits/17025
- http://www.securityfocus.com/bid/46937
- http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-080-04.pdf
- http://www.vupen.com/english/advisories/2011/0742