{ "containers": { "cna": { "affected": [ { "defaultStatus": "unaffected", "product": "IntegraXor", "vendor": "Ecava", "versions": [ { "lessThanOrEqual": "4.1.4380", "status": "affected", "version": "0", "versionType": "custom" } ] } ], "credits": [ { "lang": "en", "type": "finder", "value": "Luigi Auriemma" } ], "datePublic": "2014-01-15T07:00:00.000Z", "descriptions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "
Stack-based buffer overflow in the SCADA server in Ecava IntegraXor before 4.1.4390 allows remote attackers to cause a denial of service (system crash) by triggering access to DLL code located in the IntegraXor directory.
" } ], "value": "Stack-based buffer overflow in the SCADA server in Ecava IntegraXor before 4.1.4390 allows remote attackers to cause a denial of service (system crash) by triggering access to DLL code located in the IntegraXor directory." } ], "metrics": [ { "cvssV2_0": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "format": "CVSS", "scenarios": [ { "lang": "en", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-121", "description": "CWE-121", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert", "dateUpdated": "2025-08-25T23:46:30.088Z" }, "references": [ { "name": "102171", "tags": [ "vdb-entry", "x_refsource_OSVDB" ], "url": "http://osvdb.org/102171" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.integraxor.com/blog/buffer-overflow-vulnerability-note/" }, { "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-14-016-01" } ], "solutions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "Ecava Sdn Bhd has issued a customer notification that details this \nvulnerability and provides mitigation guidance to its customers. Ecava \nSdn Bhd recommends users download and install the update, IntegraXor \nSCADA Server 4.1.4390, from their support Web site:
\nhttp://www.integraxor.com/download/rc.msi?4.1.4390
For additional information, please see Ecava’s vulnerability note:
\nhttp://www.integraxor.com/blog/buffer-overflow-vulnerability-note/
\n\n