Remote Code Execution Vulnerability in Sielco Sistemi Winlog Pro and Winlog Lite SCADA

CVE-2012-4357 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Array index error in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 might allow remote attackers to execute arbitrary code by referencing, within a port-46824 TCP packet, an invalid file-pointer index that leads to execution of an EnterCriticalSection code block.

Learn more about our Web Application Penetration Testing UK.