[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Denial of service vulnerability in Siemens Automation License Manager (ALM)

ID: oval:org.secpod.oval:def:4171Date: (C)2012-02-23   (M)2021-09-11
Class: VULNERABILITYFamily: windows




The host is installed with Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle the crafted content in a get_target_ocx_param or send_target_ocx_param command. Successful exploitation allows remote attackers to cause a NULL pointer dereference and daemon crash.

Platform:
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product:
Siemens Automation License Manager
Reference:
CVE-2011-4531
CVE    1
CVE-2011-4531
CPE    2
cpe:/a:siemens:automation_license_manager:5.1:sp1
cpe:/a:siemens:automation_license_manager

© SecPod Technologies