CVE-2011-4874
Published Apr 13, 2012
Last updated 7 years ago
Overview
- Description
- Use-after-free vulnerability in MICROSYS PROMOTIC before 8.1.7 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (data corruption and application crash) via a crafted project (aka .pra) file.
- Source
- cret@cert.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.9
- Impact score
- 10
- Exploitability score
- 5.5
- Vector string
- AV:A/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-399
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsys:promotic:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2C8458FB-FBCE-44A1-84FF-1DBEE08BE7EC",
"versionEndIncluding": "8.1.6"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "02178943-2743-47D5-B9C4-AB949988DC1D"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7357AA05-5785-4457-8419-07D50963B72E"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C2C61222-F8FD-40DA-8BEB-214D84C9776A"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D10CCACE-AFB3-48DC-8B4D-C7A612083C86"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "656C8269-02BC-446D-9DE8-9C05BCD73642"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7E9BB1C0-980B-476E-9C4C-6CA5C0C935CC"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C9D0E060-A295-4FA8-8E83-3555376B1DD9"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A893332-E407-475C-A0A3-3D553BEAF7A9"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C1E4F8D-61B9-463D-9642-800A0CF425EE"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "70455EAC-1F80-4B06-9524-2014A9245296"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C171B19-3889-4B4E-B7FE-0B7CEA3AED43"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FEC60655-5D1C-40A6-877B-990618764E56"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "98EF64C6-DD93-40AE-A354-324657BD69C9"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.0.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9EAEA85A-34B2-4EE4-B431-124DFE690AF1"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8B5CB21B-4E56-4145-9E42-EAA464A3E00D"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0BDDFCCF-7E92-47B3-BF14-C1A3AE7253F4"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "86EFD69D-C3C6-497F-B651-FEE7C4992DA8"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B33DB525-2F9D-477D-908E-C30B6F4F57B6"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C7379A35-8600-4AB2-BAF5-262934D75D50"
},
{
"criteria": "cpe:2.3:a:microsys:promotic:8.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "749C8027-73CD-4253-8233-2C2AA4E3D725"
}
],
"operator": "OR"
}
]
}
]