Description
Stack-based buffer overflow in an unspecified DLL file in a DTM development kit in Schneider Electric Unity Pro, SoMachine, SoMove, SoMove Lite, Modbus Communication Library 2.2.6 and earlier, CANopen Communication Library 1.0.2 and earlier, EtherNet/IP Communication Library 1.0.0 and earlier, EM X80 Gateway DTM (MB TCP/SL), Advantys DTM for OTB, Advantys DTM for STB, KINOS DTM, SOLO DTM, and Xantrex DTMs allows remote attackers to execute arbitrary code via unspecified vectors.
References (5)
Core 5
Core References
Various Sources x_refsource_confirm
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-009-01
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/72335
Third Party Advisory, US Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-15-027-02
Third Party Advisory, US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-15-027-02
Scores
EPSS
0.0219
EPSS Percentile
84.6%
Details
CWE
CWE-119
CWE-121
Status
published
Products (16)
Schneider Electric/Advantys DTMs (OTB, STB)
all versions
Schneider Electric/CANopen Communication Library
< Version 1.0.2
Schneider Electric/EM X80 Gateway DTM (MB TCP/SL)
all versions
Schneider Electric/EtherNet/IP Communication Library
< Version 1.0.0
Schneider Electric/KINOS DTM
all versions
Schneider Electric/Modbus Communication Library
< Version 2.2.6
Schneider Electric/SOLO DTM
all versions
Schneider Electric/SoMachine
all versions
Schneider Electric/SoMove
all versions
Schneider Electric/SoMove Lite
all versions
... and 6 more
Published
Feb 01, 2015
Tracked Since
Feb 18, 2026