Intrusion Prevention

Microsys.PROMOTIC.Stack.Buffer.Overflow

Description

This indicates an attack attempt against a Stack Buffer Overflow vulnerability in PROMOTIC.
The vulnerability is caused by an error when the vulnerable software handles a malicious http request. It allows a remote attacker to execute arbitrary code on vulnerable systems via a crafted http request.

Affected Products

PROMOTIC versions prior to stable 8.2.19
PROMOTIC versions prior to development 8.3.2

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrades or patches from the vendor.
http://www.promotic.eu/en/pmdoc/News.htm

CVE References

CVE-2014-9205