VAR-201705-3258
Vulnerability from variot - Updated: 2023-12-18 12:29A Stack Buffer Overflow issue was discovered in VIPA Controls WinPLC7 5.0.45.5921 and prior. A stack-based buffer overflow vulnerability has been identified, where an attacker with a specially crafted packet could overflow the fixed length buffer. This could allow remote code execution. VIPA Controls WinPLC7 Contains a buffer error vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of VIPA Automation WinPLC7. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of TCP packets. The software fails to validate the length field within the packet before copying it to a stack buffer. An attacker can leverage this vulnerability to execute code in the context of the process. WinPLC is a free set of applications for controlling the Velleman K8000 (Computer Interface Board). VIPA Controls WinPLC7 is prone to a stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. Successfully exploiting this issue allows remote attackers to crash the affected application, denying service to legitimate users. WinPLC7 5.0.45.5921 and prior versions are vulnerable
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201705-3258",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "winplc7",
"scope": "lte",
"trust": 1.8,
"vendor": "vipa controls",
"version": "5.0.45.5921"
},
{
"model": "automation winplc7",
"scope": null,
"trust": 0.7,
"vendor": "vipa",
"version": null
},
{
"model": "controls winplc7",
"scope": "lte",
"trust": 0.6,
"vendor": "vipa",
"version": "\u003c=5.0.45.5921"
},
{
"model": "winplc7",
"scope": "eq",
"trust": 0.6,
"vendor": "vipa controls",
"version": "5.0.45.5921"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "winplc7",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a"
},
{
"db": "ZDI",
"id": "ZDI-17-112"
},
{
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"db": "NVD",
"id": "CVE-2017-5177"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:vipa_controls:winplc7_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "5.0.45.5921",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:vipa_controls:winplc7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2017-5177"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Ariele Caltabiano (kimiya)",
"sources": [
{
"db": "ZDI",
"id": "ZDI-17-112"
}
],
"trust": 0.7
},
"cve": "CVE-2017-5177",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": true,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 5.0,
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2017-5177",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "ZDI",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CVE-2017-5177",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "MEDIUM",
"trust": 0.7,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CNVD-2017-02586",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "VHN-113380",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 7.5,
"baseSeverity": "High",
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2017-5177",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2017-5177",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "ZDI",
"id": "CVE-2017-5177",
"trust": 0.7,
"value": "MEDIUM"
},
{
"author": "CNVD",
"id": "CNVD-2017-02586",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201702-837",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a",
"trust": 0.2,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-113380",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a"
},
{
"db": "ZDI",
"id": "ZDI-17-112"
},
{
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"db": "VULHUB",
"id": "VHN-113380"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"db": "NVD",
"id": "CVE-2017-5177"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A Stack Buffer Overflow issue was discovered in VIPA Controls WinPLC7 5.0.45.5921 and prior. A stack-based buffer overflow vulnerability has been identified, where an attacker with a specially crafted packet could overflow the fixed length buffer. This could allow remote code execution. VIPA Controls WinPLC7 Contains a buffer error vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of VIPA Automation WinPLC7. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of TCP packets. The software fails to validate the length field within the packet before copying it to a stack buffer. An attacker can leverage this vulnerability to execute code in the context of the process. WinPLC is a free set of applications for controlling the Velleman K8000 (Computer Interface Board). VIPA Controls WinPLC7 is prone to a stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. \nSuccessfully exploiting this issue allows remote attackers to crash the affected application, denying service to legitimate users. \nWinPLC7 5.0.45.5921 and prior versions are vulnerable",
"sources": [
{
"db": "NVD",
"id": "CVE-2017-5177"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"db": "ZDI",
"id": "ZDI-17-112"
},
{
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"db": "BID",
"id": "96413"
},
{
"db": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a"
},
{
"db": "VULHUB",
"id": "VHN-113380"
}
],
"trust": 3.33
},
"exploit_availability": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-113380",
"trust": 0.1,
"type": "unknown"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-113380"
}
]
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2017-5177",
"trust": 4.3
},
{
"db": "ICS CERT",
"id": "ICSA-17-054-01",
"trust": 3.1
},
{
"db": "BID",
"id": "96413",
"trust": 1.4
},
{
"db": "EXPLOIT-DB",
"id": "42693",
"trust": 1.1
},
{
"db": "CNNVD",
"id": "CNNVD-201702-837",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2017-02586",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2017-004107",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-3721",
"trust": 0.7
},
{
"db": "ZDI",
"id": "ZDI-17-112",
"trust": 0.7
},
{
"db": "IVD",
"id": "C38D09E7-E6F9-42DA-805A-BA2F1A8C2F6A",
"trust": 0.2
},
{
"db": "PACKETSTORM",
"id": "144168",
"trust": 0.1
},
{
"db": "VULHUB",
"id": "VHN-113380",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a"
},
{
"db": "ZDI",
"id": "ZDI-17-112"
},
{
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"db": "VULHUB",
"id": "VHN-113380"
},
{
"db": "BID",
"id": "96413"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"db": "NVD",
"id": "CVE-2017-5177"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
]
},
"id": "VAR-201705-3258",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a"
},
{
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"db": "VULHUB",
"id": "VHN-113380"
}
],
"trust": 1.9
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a"
},
{
"db": "CNVD",
"id": "CNVD-2017-02586"
}
]
},
"last_update_date": "2023-12-18T12:29:40.266000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.vipa.com/home/"
},
{
"title": "VIPA has issued an update to correct this vulnerability.",
"trust": 0.7,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-054-01"
},
{
"title": "Patch for WinPLC Stack Buffer Overflow Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/90359"
},
{
"title": "WinPLC Buffer error vulnerability fix",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=68092"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-17-112"
},
{
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-119",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-113380"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"db": "NVD",
"id": "CVE-2017-5177"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.8,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-054-01"
},
{
"trust": 1.1,
"url": "http://www.securityfocus.com/bid/96413"
},
{
"trust": 1.1,
"url": "https://www.exploit-db.com/exploits/42693/"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5177"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2017-5177"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-17-112"
},
{
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"db": "VULHUB",
"id": "VHN-113380"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"db": "NVD",
"id": "CVE-2017-5177"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a"
},
{
"db": "ZDI",
"id": "ZDI-17-112"
},
{
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"db": "VULHUB",
"id": "VHN-113380"
},
{
"db": "BID",
"id": "96413"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"db": "NVD",
"id": "CVE-2017-5177"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-03-10T00:00:00",
"db": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a"
},
{
"date": "2017-02-28T00:00:00",
"db": "ZDI",
"id": "ZDI-17-112"
},
{
"date": "2017-03-10T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"date": "2017-05-19T00:00:00",
"db": "VULHUB",
"id": "VHN-113380"
},
{
"date": "2017-02-23T00:00:00",
"db": "BID",
"id": "96413"
},
{
"date": "2017-06-16T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"date": "2017-05-19T03:29:00.353000",
"db": "NVD",
"id": "CVE-2017-5177"
},
{
"date": "2017-02-27T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-02-28T00:00:00",
"db": "ZDI",
"id": "ZDI-17-112"
},
{
"date": "2017-03-10T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-02586"
},
{
"date": "2017-09-16T00:00:00",
"db": "VULHUB",
"id": "VHN-113380"
},
{
"date": "2017-03-07T03:09:00",
"db": "BID",
"id": "96413"
},
{
"date": "2017-06-16T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"date": "2017-09-16T01:29:04.217000",
"db": "NVD",
"id": "CVE-2017-5177"
},
{
"date": "2017-05-19T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "VIPA Controls WinPLC7 Buffer error vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-004107"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
],
"trust": 1.4
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Buffer overflow",
"sources": [
{
"db": "IVD",
"id": "c38d09e7-e6f9-42da-805a-ba2f1a8c2f6a"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-837"
}
],
"trust": 0.8
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…