CVE-2007-4827
Published Sep 19, 2007
Last updated 6 years ago
Overview
- Description
- Unspecified vulnerability in the Modbus/TCP Diagnostic function in MiniHMI.exe for the Automated Solutions Modbus Slave ActiveX Control before 1.5 allows remote attackers to corrupt the heap and possibly execute arbitrary code via malformed Modbus requests to TCP port 502.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:automated_solutions:modbus_slave_activex_control:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4F0D54B4-C438-4EBC-B51C-3F17DF018306",
"versionEndIncluding": "1.4"
}
],
"operator": "OR"
}
]
}
]