Format String Vulnerability in IGSSdataServer.exe 9.00.00.11074 and earlier versions

Format String Vulnerability in IGSSdataServer.exe 9.00.00.11074 and earlier versions

CVE-2011-1568 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00.00.11074, and 9.00.00.11063 and earlier, in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated using the RMS Reports Delete command, related to the logging of messages to GSST.LOG. NOTE: some of these details are obtained from third party information.

Learn more about our Cis Benchmark Audit For Server Software.