Vulnerability Name:

CVE-2012-0245 (CCN-73409)

Assigned:2011-12-21
Published:2012-02-22
Updated:2012-10-30
Summary:Multiple stack-based buffer overflows in RobNetScanHost.exe in ABB Robot Communications Runtime before 5.14.02, as used in ABB Interlink Module, IRC5 OPC Server, PC SDK, PickMaster 3 and 5, RobView 5, RobotStudio, WebWare SDK, and WebWare Server, allow remote attackers to execute arbitrary code via a crafted (1) 0xA or (2) 0xE Netscan packet.
CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: BUGTRAQ
Type: UNKNOWN
20120222 ZDI-12-033 : ABB WebWare RobNetScanHost.exe Remote Code Execution Vulnerability

Source: MITRE
Type: CNA
CVE-2012-0245

Source: CCN
Type: SA48090
ABB Multiple Products RobNetScanHost.exe Buffer Overflow Vulnerability

Source: SECUNIA
Type: Vendor Advisory
48090

Source: CCN
Type: OSVDB ID: 79476
ABB Multiple Products RobNetScanHost.exe Netscan Packet Parsing Remote Overflow

Source: BID
Type: UNKNOWN
52123

Source: CCN
Type: BID-52123
ABB Products Robot Communications Runtime 'RobNetScanHost.exe' Buffer Overflow Vulnerability

Source: MISC
Type: Patch, US Government Resource
http://www.us-cert.gov/control_systems/pdf/ICSA-12-059-01.pdf

Source: MISC
Type: UNKNOWN
http://www.zerodayinitiative.com/advisories/ZDI-12-033/

Source: CCN
Type: ABB-VU-DMRO-38599
Buffer Overflow in Robot Communications Runtime on Windows

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www05.abb.com/global/scot/scot348.nsf/veritydisplay/f261be074480dc24c12579a00049ecd5/$file/si10227a1%20vulnerability%20security%20advisory.pdf

Source: XF
Type: UNKNOWN
abb-robnetscanhost-bo(73409)

Source: CCN
Type: ZDI-12-033
ABB WebWare RobNetScanHost.exe Remote Code Execution Vulnerability

Vulnerable Configuration:Configuration 1:
  • cpe:/a:abb:interlink_module:-:*:*:*:*:*:*:*
  • OR cpe:/a:abb:irc5_opc_server:-:*:*:*:*:*:*:*
  • OR cpe:/a:abb:pc_sdk:-:*:*:*:*:*:*:*
  • OR cpe:/a:abb:pickmaster_3:-:*:*:*:*:*:*:*
  • OR cpe:/a:abb:pickmaster_5:-:*:*:*:*:*:*:*
  • OR cpe:/a:abb:robot_communications_runtime:*:*:*:*:*:*:*:* (Version <= 5.14.01)
  • OR cpe:/a:abb:robotstudio:-:*:*:*:*:*:*:*
  • OR cpe:/a:abb:robview_5:-:*:*:*:*:*:*:*
  • OR cpe:/a:abb:webware_sdk:-:*:*:*:*:*:*:*
  • OR cpe:/a:abb:webware_server:-:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:abb:pickmaster_3:-:*:*:*:*:*:*:*
  • OR cpe:/a:abb:pickmaster_5:-:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    BACK
    abb interlink module -
    abb irc5 opc server -
    abb pc sdk -
    abb pickmaster 3 -
    abb pickmaster 5 -
    abb robot communications runtime *
    abb robotstudio -
    abb robview 5 -
    abb webware sdk -
    abb webware server -
    abb pickmaster 3 -
    abb pickmaster 5 -