CVE-2016-8377

Summary

An issue was discovered in Fatek Automation PLC WinProladder Version 3.11 Build 14701. A stack-based buffer overflow vulnerability exists when the software application connects to a malicious server, resulting in a stack buffer overflow. This causes an exploitable Structured Exception Handler (SEH) overwrite condition that may allow remote code execution.

Affected Software

VendorProductVersion RangeStatus
n/aFatek Automation PLC WinProladder 3.11 Build 14701Fatek Automation PLC WinProladder 3.11 Build 14701affected

Weaknesses

  • Fatek Automation PLC WinProladder Stack-Based Buffer Overflow Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References