CVE-2012-2516
Published Jul 5, 2012
Last updated 12 years ago
Overview
- Description
- An ActiveX control in KeyHelp.ocx in KeyWorks KeyHelp Module (aka the HTML Help component), as used in GE Intelligent Platforms Proficy Historian 3.1, 3.5, 4.0, and 4.5; Proficy HMI/SCADA iFIX 5.0 and 5.1; Proficy Pulse 1.0; Proficy Batch Execution 5.6; SI7 I/O Driver 7.20 through 7.42; and other products, allows remote attackers to execute arbitrary commands via crafted input, related to a "command injection vulnerability."
- Source
- ics-cert@hq.dhs.gov
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-78
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_proficy_batch_execution:5.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0D91A768-D643-4601-B11D-2C5FB60B8566"
},
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_proficy_historian:3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "612B7F05-3C6D-43CA-8D6C-F0A887789EF5"
},
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_proficy_historian:3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6D29C00B-B754-47C5-BBD0-D63DDD252DA6"
},
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_proficy_historian:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6BC9F852-EA9A-497D-9ED2-DAF926D0440A"
},
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_proficy_historian:4.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2C8C84F4-699E-4D77-AF36-19DF28AE16CC"
},
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_proficy_hmi\\/scada_ifix:5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "65A4CBC3-3B98-4700-8710-4D4FFCA55315"
},
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_proficy_hmi\\/scada_ifix:5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5ABA340B-B00B-41EC-8270-68139B63D09A"
},
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_proficy_pulse:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "738ACF30-4F1A-44C6-9A97-46F5566ACC05"
},
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_si7_i\\/o_driver:7.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "641F3A0F-9E07-413D-869C-8E123636DD0A"
},
{
"criteria": "cpe:2.3:a:ge:intelligent_platforms_si7_i\\/o_driver:7.42:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FA786450-C420-420A-9C5E-49D408B6B3C2"
}
],
"operator": "OR"
}
]
}
]