CVE-2012-4353
Winlog Pro < 2.07.17 - Remote Code Execution via Crafted TCP Packet
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2012-4353.
AI-analyzed exploit summary This is a detailed technical analysis of multiple vulnerabilities in Sielco Sistemi Winlog SCADA/HMI software, including code execution, stack overflow, directory traversal, and memory corruption issues. The document provides disassembly snippets, exploitation details, and proof-of-concept commands using a custom tool (udpsz).
Description
Stack-based buffer overflow in RunTime.exe in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 allows remote attackers to execute arbitrary code via a crafted port-46824 TCP packet that triggers an incorrect file-open attempt by the _TCPIPS_BinOpenFileFP function, a different vulnerability than CVE-2012-3815. NOTE: some of these details are obtained from third party information.
Exploits (1)
This is a detailed technical analysis of multiple vulnerabilities in Sielco Sistemi Winlog SCADA/HMI software, including code execution, stack overflow, directory traversal, and memory corruption issues. The document provides disassembly snippets, exploitation details, and proof-of-concept commands using a custom tool (udpsz).