SCADA: Cogent Datahub Remote Unicode Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Cogent Datahub 7.1.1.63 and earlier. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
Multiple stack-based buffer overflows in the DH_OneSecondTick function in Cogent DataHub 7.1.1.63 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) domain, (2) report_domain, (3) register_datahub, or (4) slave commands.
Affected Products
Cogentdatahub cogent_datahub
Short Name
SCADA:COGENT-DATAHUB-BO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
SCADA
Keywords
Buffer CVE-2011-3493 CVE-2011-3500 CVE-2011-3501 CVE-2011-3502 Cogent Datahub Overflow Remote Unicode bid:49610 bid:49611
Release Date
11/15/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/4502,4052
False Positive
Unknown
Vendors
Cogentdatahub
CVSS Score
10.0
5.0