Sign-up

ID

VAR-201610-0695


TITLE

A component of Zijinqiao monitoring configuration software RealInfo has a denial of service vulnerability

Trust: 0.6

sources: CNVD: CNVD-2016-09760

DESCRIPTION

Zijinqiao monitoring configuration software is a general industrial configuration software developed by Zijinqiao Company in long-term scientific research and engineering practice. A security vulnerability exists in a component of the software, allowing an attacker to exploit the vulnerability to construct a special data packet that can overflow the component and cause a denial of service

Trust: 0.72

sources: CNVD: CNVD-2016-09760 // IVD: 578317f0-adec-4680-9b0c-5417ed4d05b9

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: 578317f0-adec-4680-9b0c-5417ed4d05b9 // CNVD: CNVD-2016-09760

AFFECTED PRODUCTS

vendor:zijinqiaomodel:monitoring configuration software realinfoscope:eqversion:6.5(2016-05-03)

Trust: 0.8

sources: IVD: 578317f0-adec-4680-9b0c-5417ed4d05b9 // CNVD: CNVD-2016-09760

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2016-09760
value: MEDIUM

Trust: 0.6

IVD: 578317f0-adec-4680-9b0c-5417ed4d05b9
value: MEDIUM

Trust: 0.2

CNVD: CNVD-2016-09760
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: 578317f0-adec-4680-9b0c-5417ed4d05b9
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

sources: IVD: 578317f0-adec-4680-9b0c-5417ed4d05b9 // CNVD: CNVD-2016-09760

TYPE

Denial of service

Trust: 0.2

sources: IVD: 578317f0-adec-4680-9b0c-5417ed4d05b9

PATCH

title:Remote Denial of Service Vulnerability in a Component of Zijin Bridge Monitoring Configuration Software RealInfourl:https://www.cnvd.org.cn/patchinfo/show/80661

Trust: 0.6

sources: CNVD: CNVD-2016-09760

EXTERNAL IDS

db:CNVDid:CNVD-2016-09760

Trust: 0.8

db:IVDid:578317F0-ADEC-4680-9B0C-5417ED4D05B9

Trust: 0.2

sources: IVD: 578317f0-adec-4680-9b0c-5417ed4d05b9 // CNVD: CNVD-2016-09760

SOURCES

db:IVDid:578317f0-adec-4680-9b0c-5417ed4d05b9
db:CNVDid:CNVD-2016-09760

LAST UPDATE DATE

2022-05-17T01:43:18.319000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2016-09760date:2016-10-21T00:00:00

SOURCES RELEASE DATE

db:IVDid:578317f0-adec-4680-9b0c-5417ed4d05b9date:2016-10-21T00:00:00
db:CNVDid:CNVD-2016-09760date:2016-10-05T00:00:00