CVE-2007-4827

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://dvlabs.tippingpoint.com/advisory/TPTI-07-15", "name": "http://dvlabs.tippingpoint.com/advisory/TPTI-07-15", "tags": ["Patch"], "refsource": "MISC"}, {"url": "http://www.automatedsolutions.com/pub/asmbslv/ReadMe.htm", "name": "http://www.automatedsolutions.com/pub/asmbslv/ReadMe.htm", "tags": ["Patch"], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/25713", "name": "25713", "tags": [], "refsource": "BID"}, {"url": "http://www.nessus.org/plugins/index.php?view=single&id=26066", "name": "http://www.nessus.org/plugins/index.php?view=single&id=26066", "tags": [], "refsource": "MISC"}, {"url": "http://www.securitytracker.com/id?1018707", "name": "1018707", "tags": [], "refsource": "SECTRACK"}, {"url": "http://osvdb.org/38259", "name": "38259", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.kb.cert.org/vuls/id/981849", "name": "VU#981849", "tags": ["US Government Resource"], "refsource": "CERT-VN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36677", "name": "modbus-tcpslave-bo(36677)", "tags": [], "refsource": "XF"}, {"url": "http://www.securityfocus.com/archive/1/479967/100/0/threaded", "name": "20070918 TPTI-07-15: Automated Solutions Modbus TCP Slave ActiveX Control Heap Corruption Vulnerability", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in the Modbus/TCP Diagnostic function in MiniHMI.exe for the Automated Solutions Modbus Slave ActiveX Control before 1.5 allows remote attackers to corrupt the heap and possibly execute arbitrary code via malformed Modbus requests to TCP port 502."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-119"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-4827", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2007-09-19T18:17Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:automated_solutions:modbus_slave_activex_control:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "1.4"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-15T21:38Z"}