CVE-2008-2639 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-2639
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-2639

Description: Stack-based buffer overflow in the ODBC server service in Citect CitectSCADA 6 and 7, and CitectFacilities 7, allows remote attackers to execute arbitrary code via a long string in the second application packet in a TCP session on port 20222.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/42992 ST 1020241 SREASON http://securityreason.com/securityalert/3944 SAID Secunia Advisory: SA30638 MISC http://www.coresecurity.com/?action=item&id=2186 http://isc.sans.org/diary.html?storyid=4556 MILW0RM http://www.milw0rm.com/exploits/6387 CONFIRM http://www.kb.cert.org/vuls/id/CTAR-7ENQNH CERT-VN 476345 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/493272/100/0/threaded BID 29634

Return to the previous page.