CVE-2013-0680

Cogent Real-Time Systems - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in the web server in Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend before 7.3.0 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long HTTP header.

Exploits (1)

metasploit WORKING POC NORMAL

rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/cogent_datahub_request_headers_bof.rb

View Code ZIP pw:eip

References (1)

[US Government Resource] http://ics-cert.us-cert.gov/pdf/ICSA-13-095-01.pdf

Scores

EPSS 0.5167

EPSS Percentile 97.9%

Details

CWE

CWE-119

Status published

Products (12)

cogentdatahub/cascade_datahub 6.4.20

cogentdatahub/cascade_datahub < 6.4.21

cogentdatahub/cogent_datahub 7.0

cogentdatahub/cogent_datahub 7.0.2

cogentdatahub/cogent_datahub 7.1.0

cogentdatahub/cogent_datahub 7.1.1

cogentdatahub/cogent_datahub 7.1.1.63

cogentdatahub/cogent_datahub 7.1.2

cogentdatahub/cogent_datahub < 7.2.2

cogentdatahub/datahub_quicktrend < 7.2.2

... and 2 more

Published Apr 05, 2013

Tracked Since Feb 18, 2026