CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Vulnerability Details : CVE-2014-3888 (1 public exploit)

Stack-based buffer overflow in BKFSim_vhfd.exe in Yokogawa CENTUM CS 1000, CENTUM CS 3000 R3.09.50 and earlier, CENTUM VP R5.03.20 and earlier, Exaopc R3.72.00 and earlier, B/M9000CS R5.05.01 and earlier, and B/M9000 VP R7.03.01 and earlier, when FCS/Test Function is enabled, allows remote attackers to execute arbitrary code via a crafted packet.
Publish Date : 2014-07-10 Last Update Date : 2015-10-08
Search Twitter   Search YouTube   Search Google

- CVSS Scores & Vulnerability Types

CVSS Score
8.3
Confidentiality Impact Partial (There is considerable informational disclosure.)
Integrity Impact Partial (Modification of some system files or information is possible, but the attacker does not have control over what can be modified, or the scope of what the attacker can affect is limited.)
Availability Impact Complete (There is a total shutdown of the affected resource. The attacker can render the resource completely unavailable.)
Access Complexity Medium (The access conditions are somewhat specialized. Some preconditions must be satistified to exploit)
Authentication Not required (Authentication is not required to exploit the vulnerability.)
Gained Access None
Vulnerability Type(s) Execute CodeOverflow
CWE ID 119

- Products Affected By CVE-2014-3888

# Product Type Vendor Product Version Update Edition Language
1 Hardware Yokogawa B/m9000 Vp - Version Details Vulnerabilities
2 Application Yokogawa B/m9000 Vp Software 7.03.01 Version Details Vulnerabilities
3 Hardware Yokogawa B/m9000cs - Version Details Vulnerabilities
4 Application Yokogawa B/m9000cs Software 5.05.01 Version Details Vulnerabilities
5 Hardware Yokogawa Centum Cs 1000 - Version Details Vulnerabilities
6 Application Yokogawa Centum Cs 1000 Software - Version Details Vulnerabilities
7 Hardware Yokogawa Centum Cs 3000 - Version Details Vulnerabilities
8 Hardware Yokogawa Centum Cs 3000 Entry Class - Version Details Vulnerabilities
9 Application Yokogawa Centum Cs 3000 Entry Class Software 3.09.50 Version Details Vulnerabilities
10 Application Yokogawa Centum Cs 3000 Software 2.23.00 Version Details Vulnerabilities
11 Hardware Yokogawa Centum Vp - Version Details Vulnerabilities
12 Hardware Yokogawa Centum Vp Entry Class - Version Details Vulnerabilities
13 Application Yokogawa Centum Vp Entry Class Software 5.03.00 Version Details Vulnerabilities
14 Application Yokogawa Centum Vp Software 4.03.00 Version Details Vulnerabilities
15 Application Yokogawa Centum Vp Software 5.03.20 Version Details Vulnerabilities
16 Application Yokogawa Exaopc 3.71.02 Version Details Vulnerabilities
17 Application Yokogawa Exaopc 3.72.00 Version Details Vulnerabilities

- Number Of Affected Versions By Product

Vendor Product Vulnerable Versions
Yokogawa B/m9000 Vp 1
Yokogawa B/m9000 Vp Software 1
Yokogawa B/m9000cs 1
Yokogawa B/m9000cs Software 1
Yokogawa Centum Cs 1000 1
Yokogawa Centum Cs 1000 Software 1
Yokogawa Centum Cs 3000 1
Yokogawa Centum Cs 3000 Entry Class 1
Yokogawa Centum Cs 3000 Entry Class Software 1
Yokogawa Centum Cs 3000 Software 1
Yokogawa Centum Vp 1
Yokogawa Centum Vp Entry Class 1
Yokogawa Centum Vp Entry Class Software 1
Yokogawa Centum Vp Software 2
Yokogawa Exaopc 2

- References For CVE-2014-3888

http://osvdb.org/show/osvdb/108756
OSVDB 108756
Exploit! http://www.exploit-db.com/exploits/34009
EXPLOIT-DB 34009 Yokogawa CS3000 BKFSim_vhfd.exe Buffer Overflow Author:metasploit Release Date:2014-07-08 (windows) remotePort:20010
http://ics-cert.us-cert.gov/advisories/ICSA-14-189-01
http://www.yokogawa.com/dcs/security/ysar/YSAR-14-0002E.pdf CONFIRM
http://packetstormsecurity.com/files/127382/Yokogawa-CS3000-BKFSim_vhfd.exe-Buffer-Overflow.html

- Vulnerability Conditions

Vulnerability is valid if product versions listed below are used TOGETHER WITH(AND)

- Metasploit Modules Related To CVE-2014-3888

Yokogawa CS3000 BKFSim_vhfd.exe Buffer Overflow
This module exploits a stack based buffer overflow on Yokogawa CS3000. The vulnerability exists in the service BKFSim_vhfd.exe when using malicious user-controlled data to create logs using functions like vsprintf and memcpy in an insecure way. This module has been tested successfully on Yokogawa Centum CS3000 R3.08.50 over Windows XP SP3.
Module type : exploit Rank : normal Platforms : Windows


CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.