Automated Solutions Modbus TCP Slave ActiveX memory corruption

[EN] securityvulns.ru
no-pyccku

Automated Solutions Modbus TCP Slave ActiveX memory corruption
Published: 19.09.2007
Source: BUGTRAQ
SecurityVulns ID: 8168
Type: remote
Level: 5/10
Description: Memory corruption on TCP/502 request handling.

CVE: CVE-2007-4827 (Unspecified vulnerability in the Modbus/TCP Diagnostic function in MiniHMI.exe for the Automated Solutions Modbus Slave ActiveX Control before 1.5 allows remote attackers to corrupt the heap and possibly execute arbitrary code via malformed Modbus requests to TCP port 502.)

Original document 3COM, TPTI-07-15: Automated Solutions Modbus TCP Slave ActiveX Control Heap Corruption Vulnerability (19.09.2007)

Discuss: Read or add your comments to this news (0 comments)