Vulnerability Description
Integer overflow in CimWebServer.exe in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to cause a denial of service (daemon crash) via a malformed HTTP request.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ge | Intelligent Platforms Proficy Hmi\/Scada Cimplicity | 4.01 |
| Ge | Intelligent Platforms Proficy Process Systems With Cimplicity | - |
| Ge | Intelligent Platforms Proficy Process Systems | - |
Related Weaknesses (CWE)
References
- http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB15153
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-341-01.pdfUS Government Resource
- http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB15153
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-341-01.pdfUS Government Resource
FAQ
What is CVE-2012-4689?
CVE-2012-4689 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Integer overflow in CimWebServer.exe in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to cause a denial...
How severe is CVE-2012-4689?
CVE-2012-4689 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-4689?
Check the references section above for vendor advisories and patch information. Affected products include: Ge Intelligent Platforms Proficy Hmi\/Scada Cimplicity, Ge Intelligent Platforms Proficy Process Systems With Cimplicity, Ge Intelligent Platforms Proficy Process Systems.