CVE-2014-0774

Summary

Stack-based buffer overflow in the C++ sample client in Schneider Electric OPC Factory Server (OFS) TLXCDSUOFS33 - 3.35, TLXCDSTOFS33 - 3.35, TLXCDLUOFS33 - 3.35, TLXCDLTOFS33 - 3.35, and TLXCDLFOFS33 - 3.35 allows local users to gain privileges via vectors involving a malformed configuration file.

Affected Software

VendorProductVersion RangeStatus
Schneider ElectricTLXCDSUOFS33V3.35affected
Schneider ElectricTLXCDSTOFS33V3.35affected
Schneider ElectricTLXCDLUOFS33V3.35affected
Schneider ElectricTLXCDLTOFS33V3.35affected
Schneider ElectricTLXCDLFOFS33V3.35affected

Weaknesses

  • CWE-121: CWE-121

ADP Enrichment

CVE Program Container

Additional References

References