CVE-2011-4529

Siemens Automation License Manager < 5.1 - Memory Corruption

Title source: rule

Description

Multiple buffer overflows in Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 allow remote attackers to execute arbitrary code via a long serialid field in an _licensekey command, as demonstrated by the (1) check_licensekey or (2) read_licensekey command.

Exploits (1)

exploitdb WRITEUP
doswindows
https://www.exploit-db.com/exploits/18165

References (4)

Scores

EPSS 0.1493
EPSS Percentile 94.4%

Classification

CWE
CWE-119
Status draft

Affected Products (1)

siemens/automation_license_manager < 5.1

Timeline

Published Jan 08, 2012
Tracked Since Feb 18, 2026