CVE-2012-0258 : Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware A

Heap-based buffer overflow in the WWCabFile ActiveX component in the Wonderware System Platform in Invensys Wonderware Application Server 2012 and earlier, Foxboro Control Software 3.1 and earlier, InFusion CE/FE/SCADA 2.5 and earlier, Wonderware Information Server 4.5 and earlier, ArchestrA Application Object Toolkit 3.2 and earlier, and InTouch 10.0 through 10.5 might allow remote attackers to execute arbitrary code via a long string to the AddFile member.

Published 2012-04-02 20:55:02

Updated 2013-03-26 03:32:05

Source CERT/CC

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Exploit prediction scoring system (EPSS) score for CVE-2012-0258

Probability of exploitation activity in the next 30 days: 4.06%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 91 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2012-0258

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2012-0258

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-0258

http://www.us-cert.gov/control_systems/pdf/ICSA-12-081-01.pdf

404 - File Not Found | CISA
US Government Resource

CVEs referencing this url
https://wdnresource.wonderware.com/support/docs/_SecurityBulletins/Security_Bulletin_LFSEC00000071.pdf

CVEs referencing this url

Products affected by CVE-2012-0258

Invensys » Wonderware Application Server
Versions up to, including, (<=) 2012
cpe:2.3:a:invensys:wonderware_application_server:*:*:*:*:*:*:*:*
Matching versions
Invensys » Wonderware Information Server
Versions up to, including, (<=) 4.5
cpe:2.3:a:invensys:wonderware_information_server:*:*:*:*:*:*:*:*
Matching versions
Invensys » Wonderware Information Server » Version: 3.1
cpe:2.3:a:invensys:wonderware_information_server:3.1:*:*:*:*:*:*:*
Matching versions
Invensys » Wonderware Information Server » Version: 4.0
cpe:2.3:a:invensys:wonderware_information_server:4.0:*:*:*:*:*:*:*
Matching versions
Invensys » Wonderware Information Server » Version: 4.0 Update SP1
cpe:2.3:a:invensys:wonderware_information_server:4.0:sp1:*:*:*:*:*:*
Matching versions
Invensys » Foxboro Control Software
Versions up to, including, (<=) 3.1
cpe:2.3:a:invensys:foxboro_control_software:*:*:*:*:*:*:*:*
Matching versions
Invensys » Infusion Control Edition
Versions up to, including, (<=) 2.5
cpe:2.3:a:invensys:infusion_control_edition:*:*:*:*:*:*:*:*
Matching versions
Invensys » Infusion Foundation Edition
Versions up to, including, (<=) 2.5
cpe:2.3:a:invensys:infusion_foundation_edition:*:*:*:*:*:*:*:*
Matching versions
Invensys » Infusion Scada
Versions up to, including, (<=) 2.5
cpe:2.3:a:invensys:infusion_scada:*:*:*:*:*:*:*:*
Matching versions
Invensys » Archestra Application Object Toolkit
Versions up to, including, (<=) 3.2
cpe:2.3:a:invensys:archestra_application_object_toolkit:*:*:*:*:*:*:*:*
Matching versions
Invensys » Intouch » Version: 10.0
cpe:2.3:a:invensys:intouch:10.0:*:*:*:*:*:*:*
Matching versions
Invensys » Intouch » Version: 10.5
cpe:2.3:a:invensys:intouch:10.5:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2012-0258

Exploit prediction scoring system (EPSS) score for CVE-2012-0258

CVSS scores for CVE-2012-0258

CWE ids for CVE-2012-0258

References for CVE-2012-0258

Products affected by CVE-2012-0258