ID
VAR-201509-0500
TITLE
Wind River VxWorks Integer Overflow Vulnerability
Trust: 0.8
sources:
IVD: adb3b682-1e64-11e6-abef-000c29c66e3d //
CNVD: CNVD-2015-06243
DESCRIPTION
VxWorks is a real-time operating system widely used on ICS-related devices. Wind River VxWorks version 5.5-6.9.4.1 has an integer overflow vulnerability in its implementation. Successful use allows an attacker to remotely execute arbitrary code in the operating system, destroy or bypass all memory protection, and set up backdoor accounts
Trust: 0.72
sources:
CNVD: CNVD-2015-06243 //
IVD: adb3b682-1e64-11e6-abef-000c29c66e3d
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | Trust: 0.8 |
sources:
IVD: adb3b682-1e64-11e6-abef-000c29c66e3d //
CNVD: CNVD-2015-06243
AFFECTED PRODUCTS
| vendor: | wind river | model: | vxworks | scope: | eq | version: | 5.5-6.9.4.1 | Trust: 0.8 |
sources:
IVD: adb3b682-1e64-11e6-abef-000c29c66e3d //
CNVD: CNVD-2015-06243
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
IVD: adb3b682-1e64-11e6-abef-000c29c66e3d //
CNVD: CNVD-2015-06243
TYPE
Number error
Trust: 0.2
sources:
IVD: adb3b682-1e64-11e6-abef-000c29c66e3d
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2015-06243 | Trust: 0.8 |
| db: | NSFOCUS | id: | 30916 | Trust: 0.6 |
| db: | IVD | id: | ADB3B682-1E64-11E6-ABEF-000C29C66E3D | Trust: 0.2 |
sources:
IVD: adb3b682-1e64-11e6-abef-000c29c66e3d //
CNVD: CNVD-2015-06243
REFERENCES
| url: | http://www.nsfocus.net/vulndb/30916 | Trust: 0.6 |
sources:
CNVD: CNVD-2015-06243
SOURCES
| db: | IVD | id: | adb3b682-1e64-11e6-abef-000c29c66e3d |
| db: | CNVD | id: | CNVD-2015-06243 |
LAST UPDATE DATE
2022-05-17T02:07:08.248000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2015-06243 | date: | 2015-09-29T00:00:00 |
SOURCES RELEASE DATE
| db: | IVD | id: | adb3b682-1e64-11e6-abef-000c29c66e3d | date: | 2015-09-29T00:00:00 |
| db: | CNVD | id: | CNVD-2015-06243 | date: | 2015-09-28T00:00:00 |