CVE-2011-4529

Siemens Automation License Manager < 5.1 - Remote Code Execution via Long SerialID in License Key Command

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-4529.

AI-analyzed exploit summary This is a detailed technical analysis of multiple vulnerabilities in Siemens Automation License Manager, including buffer overflow, exceptions, NULL pointer dereference, and file overwriting. The writeup provides specific details on affected functions, memory corruption mechanics, and exploitation methods.

Description

Multiple buffer overflows in Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 allow remote attackers to execute arbitrary code via a long serialid field in an _licensekey command, as demonstrated by the (1) check_licensekey or (2) read_licensekey command.

Exploits (1)

exploitdb WRITEUP
doswindows
https://www.exploit-db.com/exploits/18165

This is a detailed technical analysis of multiple vulnerabilities in Siemens Automation License Manager, including buffer overflow, exceptions, NULL pointer dereference, and file overwriting. The writeup provides specific details on affected functions, memory corruption mechanics, and exploitation methods.

Classification
Writeup 100%
Attack Type
Rce | Dos
Complexity
Moderate
Reliability
Reliable
Target: Siemens Automation License Manager <= 500.0.122.1
No auth needed
Prerequisites: Network access to the Siemens Automation License Manager service
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4

Scores

EPSS 0.0716
EPSS Percentile 93.5%

Details

CWE
CWE-119
Status published
Products (1)
siemens/automation_license_manager < 5.1
Published Jan 08, 2012
Tracked Since Feb 18, 2026