CVE-2011-4034

Description

Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors.

Affected products

• Schneider Electric / citecthistorian4.30
• Schneider Electric / citecthistorian4.20 – 4.20
• Schneider Electric / citectscada_reports4.0 – 4.0
• Schneider Electric / citectscada_reports4.10
• Schneider Electric / vijeo_historian4.10 – 4.10
• Schneider Electric / vijeo_historian4.0 – 4.0
• Schneider Electric / vijeo_historian4.30
• Schneider Electric / vijeo_historian4.20 – 4.20

References

• MISChttp://www.scada.schneider-electric.com/sites/scada/en/login/historian-vulnerability.page
• MISChttp://www.us-cert.gov/control_systems/pdf/ICSA-11-307-01.pdf
• MISChttp://www.citect.com/index.php?option=com_content&view=article&id=1656&Itemid=1695