[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248364

 
 

909

 
 

195388

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2012-3010Date: (C)2012-11-01   (M)2023-12-22


rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6 through 3.5 SP1 allows remote attackers to cause a denial of service (memory corruption and service crash) or possibly execute arbitrary code via long input data, a different vulnerability than CVE-2012-3021 and CVE-2012-3026.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
BID-55935
http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB15050
http://support.ge-ip.com/support/resources/sites/GE_FANUC_SUPPORT/content/live/KB/15000/KB15050/en_US/GEIP12-10%20Security%20Advisory%20-%20Proficy%20Portal%20rifsrvd.pdf
http://www.us-cert.gov/control_systems/pdf/ICSA-12-234-01.pdf

CPE    5
cpe:/a:ge:intelligent_platforms_proficy_real-time_information_portal:3.0
cpe:/a:ge:intelligent_platforms_proficy_real-time_information_portal:3.0:sp1
cpe:/a:ge:intelligent_platforms_proficy_real-time_information_portal:3.5:sp1
cpe:/a:ge:intelligent_platforms_proficy_real-time_information_portal:2.6
...
CWE    1
CWE-20

© SecPod Technologies