Progea Movicon < 11.2 Build 1086 Multiple Vulnerabilities

critical Nessus Network Monitor Plugin ID 61

Description

The detected version of Progea Movicon is affected by multiple vulnerabilities:\n\n- There is a remote heap-based buffer overflow vulnerability related to erroneous parsing of the Content-Length HTTP request header. (CVE-2011-3491)\n\n- A remote heap-based buffer overflow vulnerability exists related to HTTP requests. (CVE-2011-3498)\n\n- A remote denial of service vulnerability exists related to an EIDP packet with too large of a size field. The specially crafted EIDP packet will cause the application to crash, and there is the possibility of arbitrary code execution. (CVE-2011-3499)

Plugin Details

Severity: Critical

ID: 61

Version: 1.0

Family: SCADA