CVE-2012-4355

Winlog Pro and Winlog Lite < 2.07.18 - Remote Code Execution via Crafted TCP Packet

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-4355.

AI-analyzed exploit summary This is a detailed technical analysis of multiple vulnerabilities in Sielco Sistemi Winlog SCADA/HMI software, including code execution, stack overflow, directory traversal, and memory corruption issues. The document provides disassembly snippets, exploitation details, and proof-of-concept commands using the 'udpsz' tool.

Description

TCPIPS_Story.dll in Sielco Sistemi Winlog Pro SCADA before 2.07.18 and Winlog Lite SCADA before 2.07.18 allows remote attackers to execute arbitrary code via a port-46824 TCP packet with a crafted negative integer after the opcode, triggering incorrect function-pointer processing that can lead to a buffer overflow. NOTE: some of these details are obtained from third party information. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-4354.

Exploits (1)

exploitdb WRITEUP
doswindows
https://www.exploit-db.com/exploits/19409

This is a detailed technical analysis of multiple vulnerabilities in Sielco Sistemi Winlog SCADA/HMI software, including code execution, stack overflow, directory traversal, and memory corruption issues. The document provides disassembly snippets, exploitation details, and proof-of-concept commands using the 'udpsz' tool.

Classification
Writeup 100%
Attack Type
Rce | Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Sielco Sistemi Winlog <= 2.07.16
No auth needed
Prerequisites: Network access to TCP port 46824 · Winlog TCP/IP server enabled
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4
Core References
Various Sources x_refsource_confirm
http://www.sielcosistemi.com/en/news/index.html?id=70
Exploit x_refsource_misc
http://aluigi.org/adv/winlog_2-adv.txt
US Government Resource x_refsource_misc
http://www.us-cert.gov/control_systems/pdf/ICSA-12-213-01.pdf
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/49395

Scores

EPSS 0.0819
EPSS Percentile 94.1%

Details

CWE
CWE-189
Status published
Products (50)
sielcosistemi/winlog_lite 2.06.00
sielcosistemi/winlog_lite 2.06.03
sielcosistemi/winlog_lite 2.06.04
sielcosistemi/winlog_lite 2.06.06
sielcosistemi/winlog_lite 2.06.09
sielcosistemi/winlog_lite 2.06.10
sielcosistemi/winlog_lite 2.06.12
sielcosistemi/winlog_lite 2.06.13
sielcosistemi/winlog_lite 2.06.14
sielcosistemi/winlog_lite 2.06.18
... and 40 more
Published Aug 19, 2012
Tracked Since Feb 18, 2026