5.3
2017-01-31T12:34:45
GE Proficy HMI SCADA CIMPLICITY CimView Memory Access Violation - CVE-2014-2355 (GEIP14-02)
The (1) CimView and (2) CimEdit components in GE Proficy HMI/SCADA-CIMPLICITY 8.2 and earlier allow remote attackers to gain privileges via a crafted CIMPLICITY screen (aka .CIM) file.
HKEY_LOCAL_MACHINE
DisplayVersion
HKEY_LOCAL_MACHINE
^SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Uninstall\\\{D33BB924-C487-4065-8B5A-DD9C900000\d{2}\}$
DisplayVersion
HKEY_LOCAL_MACHINE
DisplayVersion
oval:com.kaspersky.ics-cert:obj:1
oval:com.kaspersky.ics-cert:obj:6
HKEY_LOCAL_MACHINE
^SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Uninstall\\\{D33BB924-C487-4065-8B5A-DD9C900000\d{2}\}$
DisplayVersion
oval:com.kaspersky.ics-cert:obj:2
oval:com.kaspersky.ics-cert:obj:8
8.10.18236
8.10.18651
8.10.18236
8.20.20313
8.20.20551
^SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Uninstall\\{((4AF366C7-81ED-420E-9B1E-6CBF8F96E722)|(C596BAFB-9F7B-4042-B765-660902CD2F05))}$