The Data Archiver service in GE Intelligent Platforms Proficy Historian 4.5 and earlier allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted session on TCP port 14000 to (1) ihDataArchiver.exe or (2) ihDataArchiver_x64.exe.
2012-03-15T18:55:00.727
2025-04-11T00:51:21.963
Deferred
CVSSv2: 10.0 (HIGH)
AV:N/AC:L/Au:N/C:C/I:C/A:C
10.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | ge | intelligent_platforms_proficy_historian | ≤ 4.5 | Yes |
| Application | ge | intelligent_platforms_proficy_historian | 1.0 | Yes |
| Application | ge | intelligent_platforms_proficy_historian | 2.0 | Yes |
| Application | ge | intelligent_platforms_proficy_historian | 2.0 | Yes |
| Application | ge | intelligent_platforms_proficy_historian | 3.0 | Yes |
| Application | ge | intelligent_platforms_proficy_historian | 3.1 | Yes |
| Application | ge | intelligent_platforms_proficy_historian | 3.5 | Yes |
| Application | ge | intelligent_platforms_proficy_historian | 4.0 | Yes |