Heap-based buffer overflow in Progea Movicon / PowerHMI 11.2.1085 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a negative Content-Length field.
Movicon is prone to multiple heap-based buffer-overflow vulnerabilities and a denial-of-service vulnerability.Remote attackers can exploit these issues to execute arbitrary code in the context of the application or cause denial-of-service conditions.Movicon 11.2 Build 1085 is vulnerable; other versions may also be affected.
Vendor updates are available. Please contact the vendor for more information.
The following example input and exploit code are available: /data/vulnerabilities/exploits/49605.zip