CVE-2011-2956

AzeoTech DAQFactory before 5.85 (Build 1842) does not perform authentication for certain signals, which allows remote attackers to cause a denial of service (system reboot or shutdown) via a signal.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://www.azeotech.com/revisionhistory.php
http://www.us-cert.gov/control_systems/pdf/ICSA-11-122-01.pdf	US Government Resource

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:azeotech:daqfactory::::::::
	cpe:2.3:a:azeotech:daqfactory:3.0:-::::::
	cpe:2.3:a:azeotech:daqfactory:3.03:::::::*
	cpe:2.3:a:azeotech:daqfactory:3.5:::::::*
	cpe:2.3:a:azeotech:daqfactory:3.05:::::::*
	cpe:2.3:a:azeotech:daqfactory:3.09:::::::*
	cpe:2.3:a:azeotech:daqfactory:3.10:::::::*
	cpe:2.3:a:azeotech:daqfactory:3.11:::::::*
	cpe:2.3:a:azeotech:daqfactory:3.51:::::::*
	cpe:2.3:a:azeotech:daqfactory:3.52:::::::*
	cpe:2.3:a:azeotech:daqfactory:3.53:::::::*
	cpe:2.3:a:azeotech:daqfactory:3.55:::::::*
	cpe:2.3:a:azeotech:daqfactory:4.00:::::::*
	cpe:2.3:a:azeotech:daqfactory:4.10:::::::*
	cpe:2.3:a:azeotech:daqfactory:4.11:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.0:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.01:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.02:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.03:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.04:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.05:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.10:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.11:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.12:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.15:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.30:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.31:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.32:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.33:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.34:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.35:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.36:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.37:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.38:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.39:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.40:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.70:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.71:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.72:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.73:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.74:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.75:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.76:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.77:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.78:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.79:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.80:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.82:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.83:::::::*
	cpe:2.3:a:azeotech:daqfactory:5.83:a::::::

History

No history.

Information

Published : 2011-07-28 18:55

Updated : 2011-07-29 04:00

NVD link : CVE-2011-2956

Mitre link : CVE-2011-2956

CVE.ORG link : CVE-2011-2956

JSON object : View

Products Affected

azeotech

daqfactory

CWE

CWE-287

Improper Authentication

{"id": "CVE-2011-2956", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-07-28T18:55:03.250", "references": [{"url": "http://www.azeotech.com/revisionhistory.php", "source": "cve@mitre.org"}, {"url": "http://www.us-cert.gov/control_systems/pdf/ICSA-11-122-01.pdf", "tags": ["US Government Resource"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}], "descriptions": [{"lang": "en", "value": "AzeoTech DAQFactory before 5.85 (Build 1842) does not perform authentication for certain signals, which allows remote attackers to cause a denial of service (system reboot or shutdown) via a signal."}, {"lang": "es", "value": "AzeoTech DAQFactory antes de v5.85 (Build 1842) no realiza autenticaci\u00f3n de ciertas se\u00f1ales, lo que permite a atacantes remotos provocar una denegaci\u00f3n de servicio (reinicio o apagado del sistema) a trav\u00e9s de una se\u00f1al."}], "lastModified": "2011-07-29T04:00:00.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:azeotech:daqfactory:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B246B6A9-D98E-4F48-8AE6-75002CF2CBCB", "versionEndIncluding": "5.84"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8668100E-A3B5-4AEE-A0A5-B9641A931EF7"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "350751D6-CE73-45F6-A1E6-1190E153120F"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7344A14-3965-4121-9726-3D2950EB0208"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.05:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "98AC446B-478A-4217-A25D-33A56C78A75E"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.09:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD6487E8-6B7A-4C14-A56F-E44965A53264"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6097D59F-90E6-43F4-ADB5-5625B1F3B842"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "886CDDCF-0D11-44B6-81AD-2A2D4FEBB2E0"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CDB855B8-CDA4-4591-8F81-90C16B77E0F5"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC279BA5-BA45-40E4-8DD1-E80D68B62A94"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.53:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5832A1FB-B52F-45D0-BFB7-D01D3FBBE41B"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:3.55:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F682BB82-A06E-4626-8F9E-EB1E7E33DAD9"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:4.00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CC6CFBE-239D-4537-A148-355F388F3238"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:4.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB0392C0-3319-4AE6-977E-2AED0EDFE9C5"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:4.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5713FDC-5EC8-42EC-BCC8-5C63C5EE6DB5"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0592195-47A3-4021-854C-C14B867BC39B"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C62325DC-8C51-4F8B-A2E3-1EBA516C2AD5"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "322C54E5-C92D-4456-9229-8D19E9596821"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4F569D3-0295-40A9-829D-37AC9637A53B"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65C84BD0-39A2-4B1D-914B-2AACAA107D43"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.05:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD3C28A9-4D2E-4402-B097-B02C87F45D07"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DBD8C372-9AC0-4CA5-9592-10EAE99B39C1"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9EF9F51-3CA7-4F05-8873-44EE3F928FBE"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C21A5E58-059E-49EA-8C4A-5E540D2D020A"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86F4D91C-0DEB-474F-8F70-90BBE08B9798"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.30:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0075E67F-C2BD-478B-B57B-16B0AAE5804A"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A01D03E0-0582-4E89-8A39-8236B86DEE26"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4CABD9A-B5F0-4468-8432-33760C280900"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41553AA7-AC2B-4050-ADDA-4462568E09F1"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D59DE4B-0ADC-4347-BAD9-BDC49A095CE8"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "462A5DC8-09FB-4A72-A8E9-77B6FDBE8A2F"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.36:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4BFDAA04-4356-4708-916C-734FE5EC209C"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.37:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3BC97464-46D7-4013-9EFC-2BEFA20A3B95"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.38:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9F9EEEC5-2070-4A7D-8485-CF336BFA2AE1"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.39:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F55E34B-D91B-4467-B3A6-79397B23BEAD"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.40:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FA3D882-8959-4B24-91DA-7B08BA31B8DF"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.70:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2844056-4AD6-44C2-BD6A-5D4F29E69738"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.71:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4A2395A3-77A7-486A-BD79-50927AC992CA"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.72:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "56B9DF59-8444-490D-B0C9-FF4404479CFD"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6828A7ED-0C8E-49CA-80DC-4C9A1BD4A784"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.74:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D055B27F-1715-4A55-B42C-7D278CB94ED8"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.75:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EA182CEB-C0F0-46DC-8257-A2CA54FA2E64"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.76:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D215554-39F3-429A-81A9-CD4C88C9B093"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.77:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CB25924-FE48-4C5E-A6BA-650892B882F3"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.78:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27B722A9-B97E-4454-960C-C2D91A4C68D0"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.79:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "418E1467-741F-4286-B966-D451FC0084AC"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.80:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E817E266-1ED4-4684-B362-0BF0AB0C0B30"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.82:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8DF2A7A2-A212-4586-8CE9-69A3B762EE8A"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.83:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0DB3955-3C85-49BF-B6B9-026E177974BB"}, {"criteria": "cpe:2.3:a:azeotech:daqfactory:5.83:a:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8AAA56B9-AC6C-41FA-93B9-9B23B57961CE"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

7.8 /10