Date published: 2014-12-27T10:59:03.823-05:00
Date last modified: 2016-12-30T21:59:14.200-05:00
CVSS Score: 7.5
Principal attack vector: NETWORK
Reference URL: http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-344-01
Summary: Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8513 and CVE-2014-9188. NOTE: this may be clarified later based on details provided by researchers.