Buffer overflow in Mitsubishi-automation Mitsubishi_mx_component

CVE-2013-3075

Multiple buffer overflows in ActUWzd.dll 1.0.0.1 in Mitsubishi MX Component 3, as distributed in Citect CitectFacilities 7.10 and CitectScada 7.10r1, allow remote attackers to execute arbitrary code via a long string, as demonstrated by a…

Vulnerability class: Buffer Overflow

EPSS: 0.297 (96.7th percentile) — read the EPSS interpretation.

Affected products

Mitsubishi-automation Mitsubishi_mx_component — versions 3
Schneider-electric Citectfacilities — versions 7.10
Schneider-electric Citectscada — versions 7.10
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

24886 (Exploit, exploit, x_refsource_EXPLOIT-DB)