CVE-2011-4520
MICROSYS PROMOTIC < 8.1.5 - Heap-Based Buffer Overflow via Crafted Web Page
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2011-4520. PoCs published by Luigi Auriemma.
AI-analyzed exploit summary The document describes a remote code execution vulnerability in Microsys PROMOTIC SCADA software due to an uninitialized pointer in the GetPromoticSite method of the PmTable.ocx ActiveX control. The vulnerability requires user interaction to exploit and lacks a patch.
Description
Heap-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.
Exploits (1)
The document describes a remote code execution vulnerability in Microsys PROMOTIC SCADA software due to an uninitialized pointer in the GetPromoticSite method of the PmTable.ocx ActiveX control. The vulnerability requires user interaction to exploit and lacks a patch.