MidnightBSD

Advisories for mitsubishi-automation

CVE-2011-5163 MEDIUM

Buffer overflow in an unspecified third-party component in the Batch module for Schneider Electric CitectSCADA before 7.20 and Mitsubishi MX4 SCADA before 7.20 allows local users to execute arbitrary code via a long string in a login sequence.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
schneider-electric citectscada *
mitsubishi-automation mx4_scada *
CVE-2013-3075 HIGH

Multiple buffer overflows in ActUWzd.dll 1.0.0.1 in Mitsubishi MX Component 3, as distributed in Citect CitectFacilities 7.10 and CitectScada 7.10r1, allow remote attackers to execute arbitrary code via a long string, as demonstrated by a long WzTitle property value to a certain ActiveX control.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
schneider-electric citectfacilities 7.10
mitsubishi-automation mitsubishi_mx_component 3
schneider-electric citectscada 7.10