Vulnerabilities > CVE-2011-4874 - Resource Management Errors vulnerability in Microsys Promotic

047910
CVSS 7.9 - HIGH
Attack vector
ADJACENT_NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
microsys
CWE-399
NVD
Published: 2012-04-13
Updated: 2017-08-29

Summary

Use-after-free vulnerability in MICROSYS PROMOTIC before 8.1.7 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (data corruption and application crash) via a crafted project (aka .pra) file.

Vulnerable Configurations

Part Description Count
Application
Microsys
20

Common Weakness Enumeration (CWE)

References