CVE-2011-4052 - Vulnerability Details - OpenCVE

Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote attackers to execute arbitrary code via a crafted 0x15 (aka Remove File) operation for a file with a long name.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Indusoft	Web Studio

Configuration 1 [-]

OR	cpe:2.3:a:indusoft:web_studio:6.1:::::::*
	cpe:2.3:a:indusoft:web_studio:7.0:::::::*

No data.

References

Link	Providers
http://www.indusoft.com/hotfixes/hotfixes.php
http://www.us-cert.gov/control_systems/pdf/ICSA-11-319-01.pdf
http://www.zerodayinitiative.com/advisories/ZDI-11-329/

History

No history.

MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2011-12-05T11:00:00Z

Updated: 2024-09-17T02:06:25.418Z

Reserved: 2011-10-13T00:00:00Z

Link: CVE-2011-4052

Vulnrichment

No data.

NVD

Status : Modified

Published: 2011-12-05T11:55:06.867

Modified: 2024-11-21T01:31:45.807

Link: CVE-2011-4052

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote attackers to execute arbitrary code via a crafted 0x15 (aka Remove File) operation for a file with a long name."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2011-12-05T11:00:00Z", "orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-11-319-01.pdf"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-329/"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.indusoft.com/hotfixes/hotfixes.php"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cert@cert.org", "ID": "CVE-2011-4052", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote attackers to execute arbitrary code via a crafted 0x15 (aka Remove File) operation for a file with a long name."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.us-cert.gov/control_systems/pdf/ICSA-11-319-01.pdf", "refsource": "MISC", "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-11-319-01.pdf"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-11-329/", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-329/"}, {"name": "http://www.indusoft.com/hotfixes/hotfixes.php", "refsource": "CONFIRM", "url": "http://www.indusoft.com/hotfixes/hotfixes.php"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T23:53:32.665Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-11-319-01.pdf"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-329/"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.indusoft.com/hotfixes/hotfixes.php"}]}]}, "cveMetadata": {"assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "assignerShortName": "certcc", "cveId": "CVE-2011-4052", "datePublished": "2011-12-05T11:00:00Z", "dateReserved": "2011-10-13T00:00:00Z", "dateUpdated": "2024-09-17T02:06:25.418Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:indusoft:web_studio:6.1:*:*:*:*:*:*:*", "matchCriteriaId": "82BF1958-F098-4E55-B97C-F15253A63228", "vulnerable": true}, {"criteria": "cpe:2.3:a:indusoft:web_studio:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "9033E5E6-3FC5-448A-BA52-A03DDEA638A6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote attackers to execute arbitrary code via a crafted 0x15 (aka Remove File) operation for a file with a long name."}, {"lang": "es", "value": "Un desbordamiento de b\u00fafer basado en la pila en CEServer.exe del componente CEServer en el m\u00f3dulo de agente remoto en InduSoft Web Studio v6.1 y v7.0 permite a atacantes remotos ejecutar c\u00f3digo de su eelcci\u00f3n a trav\u00e9s de una operaci\u00f3n 0x15 (o sea la eliminaci\u00f3n de un archivo) para un archivo con un nombre demasiado largo."}], "id": "CVE-2011-4052", "lastModified": "2024-11-21T01:31:45.807", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2011-12-05T11:55:06.867", "references": [{"source": "cret@cert.org", "tags": ["Patch"], "url": "http://www.indusoft.com/hotfixes/hotfixes.php"}, {"source": "cret@cert.org", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-11-319-01.pdf"}, {"source": "cret@cert.org", "tags": ["Patch"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-329/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.indusoft.com/hotfixes/hotfixes.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-11-319-01.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-329/"}], "sourceIdentifier": "cret@cert.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}