Denial of service vulnerability in Siemens Automation License Manager (ALM)ID: oval:org.secpod.oval:def:4171 | Date: (C)2012-02-23 (M)2021-09-11 |
Class: VULNERABILITY | Family: windows |
The host is installed with Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle the crafted content in a get_target_ocx_param or send_target_ocx_param command. Successful exploitation allows remote attackers to cause a NULL pointer dereference and daemon crash.
Platform: |
Microsoft Windows 2000 |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Vista |
Microsoft Windows XP |
Product: |
Siemens Automation License Manager |