← Back

CVE-2012-3021

nvd nist
Published: Nov 1, 2012Modified: Apr 29, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6 through 3.5 SP1 allows remote attackers to cause a denial of service (memory corruption and service crash) or possibly execute arbitrary code via long input data, a different vulnerability than CVE-2012-3010 and CVE-2012-3026.

Affected (5)

Ge
1 product
Intelligent Platforms Proficy Real Time Information Portal
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Ge
Intelligent Platforms Proficy Real Time Information Portal
Version 2.6
Intelligent Platforms Proficy Real Time Information Portal
Version 3.0
Intelligent Platforms Proficy Real Time Information Portal
Version 3.0 sp1
Intelligent Platforms Proficy Real Time Information Portal
Version 3.5
Intelligent Platforms Proficy Real Time Information Portal
Version 3.5 sp1

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (8)

Source: ics-cert@hq.dhs.gov
Vendor Advisory
Source: ics-cert@hq.dhs.gov
Vendor Advisory
Source: ics-cert@hq.dhs.gov
Source: ics-cert@hq.dhs.gov
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource

Timeline

No history available yet.