Denial of service vulnerability in Cogent Real-Time Systems products - CVE-2013-0682| ID: oval:org.secpod.oval:def:14252 | Date: (C)2013-07-01 (M)2022-10-10 |
| Class: VULNERABILITY | Family: windows |
The host is installed with Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 or DataHub QuickTrend before 7.3.0 and is prone to denial of service vulnerability. The flaw is present in the parser, which fails to handle formatted text commands via TCP connection, allowing access to memory beyond the end of an allocated heap buffers or stack buffers. Successful exploitation could allow attackers to execute arbitrary code leading to application crash.
| Platform: |
| Microsoft Windows 2000 |
| Microsoft Windows 7 |
| Microsoft Windows 8 |
| Microsoft Windows Server 2003 |
| Microsoft Windows Server 2008 |
| Microsoft Windows Server 2008 R2 |
| Microsoft Windows Server 2012 |
| Microsoft Windows Vista |
| Microsoft Windows XP |
| Product: |
| Cascade DataHub |
| Cogent DataHub |
| DataHub QuickTrend |
| OPC DataHub |
