CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-2474

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile11.84th
Published2008年9月29日
Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in x87 before 3.5.5 in ABB Process Communication Unit 400 (PCU400) 4.4 through 4.6 allows remote attackers to execute arbitrary code via a crafted packet using the (1) IEC60870-5-101 or (2) IEC60870-5-104 communication protocol to the X87 web interface.

Affected Platforms (CPE)

🔌
Abb

Pcu400

= 4.4
🔌
Abb

Pcu400

= 4.5
🔌
Abb

Pcu400

= 4.6

References & Advisories

🔗 http://secunia.com/advisories/32047
🔗 http://securityreason.com/securityalert/4320
🔗 http://www.kb.cert.org/vuls/id/343971
🔗 http://www.kb.cert.org/vuls/id/CTAR-7JTNRX
🔗 http://www.securityfocus.com/archive/1/496739/100/0/threaded
🔗 http://www.securityfocus.com/bid/31391
🔗 http://secunia.com/advisories/32047
🔗 http://securityreason.com/securityalert/4320

相关漏洞威胁

CVE-2008-073510.0

SQL injection vulnerability in mod/gallery/ajax/gallery_data.php in AuraCMS 2.2 allows remote attackers to execute arbitrary SQL c...

CVE-2008-034310.0

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 has u...

CVE-2008-665110.0

Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote attackers to inject arbitrary PHP c...

CVE-2008-000310.0

Stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback function in OpenPegasus CIM management server (tog-pegasus),...