Heap-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.09 allows remote attackers to execute arbitrary code via a long vlp filename.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:HUnitronics Visilogic Oplc Ide
APPUnitronics≤ 9.8.0.00
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
Related vulnerabilities
CVE-2016-4519CRITICAL9.8ten sam produkt
Stack-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.30 allows remote attackers to execute ...
CVE-2015-7905HIGH7.5ten sam produkt
Unitronics VisiLogic OPLC IDE before 9.8.02 allows remote attackers to execute unspecified code via unknown ve...
CVE-2015-6478MEDIUM6.8ten sam produkt
Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict access to ActiveX controls, which allow...
CVE-2023-6448CRITICAL9.8⚠ KEVPL ✓ten sam vendor
Unitronics VisiLogic — domyślne hasło administratora w sterownikach PLC i HMI
CVE-2024-27767CRITICAL10.0PL ✓ten sam vendor
Pominięcie uwierzytelnienia w Unitronics Unilogic (Authentication Bypass)