Heap-based Buffer Overflow in Schneider Electric Accutech Manager
CVE-2013-0658

Currently unrated

Key Information:

Vendor: Schneider Electric
Status: Accutech Manager
Vendor: CVE Published:; 15 February 2013

Summary

A heap-based buffer overflow vulnerability exists in RFManagerService.exe of Schneider Electric's Accutech Manager, version 2.00.1 and earlier. This flaw enables remote attackers to execute arbitrary code by sending a specially crafted HTTP request to the affected service. Organizations using this software should ensure they are aware of this vulnerability and take appropriate mitigative actions to secure their systems.

References

http://ics-cert.us-cert.gov/pdf/ICSA-13-043-01.pdf

x_refsource_MISC

EPSS Score

69% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Feb 15, 2013