返回 CVE 浏览器

CVE-2012-0229

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1570%

EPSS Percentile36.31th

Published2012年3月15日

Last Modified2026年4月29日

Vulnerability Description

The Data Archiver service in GE Intelligent Platforms Proficy Historian 4.5 and earlier allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted session on TCP port 14000 to (1) ihDataArchiver.exe or (2) ihDataArchiver_x64.exe.

Affected Platforms (CPE)

📦

Ge

Intelligent Platforms Proficy Historian

<= 4.5

📦

Ge

Intelligent Platforms Proficy Historian

= 1.0

📦

Ge

Intelligent Platforms Proficy Historian

= 2.0

📦

Ge

Intelligent Platforms Proficy Historian

= 2.0

📦

Ge

Intelligent Platforms Proficy Historian

= 3.0

📦

Ge

Intelligent Platforms Proficy Historian

= 3.1

📦

Ge

Intelligent Platforms Proficy Historian

= 3.5

📦

Ge

Intelligent Platforms Proficy Historian

= 4.0

References & Advisories

🔗 http://secunia.com/advisories/48369

🔗 http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB14767

🔗 http://www.securityfocus.com/bid/52437

🔗 http://www.us-cert.gov/control_systems/pdf/ICSA-12-032-01.pdf

🔗 http://secunia.com/advisories/48369

🔗 http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB14767

🔗 http://www.securityfocus.com/bid/52437

🔗 http://www.us-cert.gov/control_systems/pdf/ICSA-12-032-01.pdf

相关漏洞威胁

CVE-2011-191810.0

Stack-based buffer overflow in the Data Archiver service in GE Intelligent Platforms Proficy Historian before 3.5 SIM 17 and 4.x b...

CVE-2012-25159.3

Multiple stack-based buffer overflows in the KeyHelp.KeyCtrl.1 ActiveX control in KeyHelp.ocx 1.2.312 in KeyWorks KeyHelp Module (...

CVE-2012-25169.3

An ActiveX control in KeyHelp.ocx in KeyWorks KeyHelp Module (aka the HTML Help component), as used in GE Intelligent Platforms Pr...

CVE-2011-33204.3

Cross-site scripting (XSS) vulnerability in the Web Administrator component in GE Intelligent Platforms Proficy Historian 4.x and ...