CyberSec.Space Logo
Back to CVE Browser

CVE-2008-2474

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile11.84th
PublishedSep 29, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Buffer overflow in x87 before 3.5.5 in ABB Process Communication Unit 400 (PCU400) 4.4 through 4.6 allows remote attackers to execute arbitrary code via a crafted packet using the (1) IEC60870-5-101 or (2) IEC60870-5-104 communication protocol to the X87 web interface.

Affected Platforms (CPE)

πŸ”Œ
Abb

Pcu400

= 4.4
πŸ”Œ
Abb

Pcu400

= 4.5
πŸ”Œ
Abb

Pcu400

= 4.6

References & Advisories

πŸ”— http://secunia.com/advisories/32047
πŸ”— http://securityreason.com/securityalert/4320
πŸ”— http://www.kb.cert.org/vuls/id/343971
πŸ”— http://www.kb.cert.org/vuls/id/CTAR-7JTNRX
πŸ”— http://www.securityfocus.com/archive/1/496739/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/31391
πŸ”— http://secunia.com/advisories/32047
πŸ”— http://securityreason.com/securityalert/4320

Related Vulnerabilities

CVE-2008-095310.0

The StartApp function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0....

CVE-2008-166110.0

Stack-based buffer overflow in DoubleTake.exe in HP StorageWorks Storage Mirroring (SWSM) before 4.5 SP2 allows remote attackers t...

CVE-2008-252810.0

Unspecified vulnerability in Citrix Access Gateway Standard Edition 4.5.7 and earlier and Advanced Edition 4.5 HF2 and earlier all...

CVE-2008-240310.0

Multiple directory traversal vulnerabilities in unspecified ASP applications in Sun Java Active Server Pages (ASP) Server before 4...