Unrated severityNVD Advisory· Published Nov 4, 2011· Updated Apr 29, 2026

CVE-2011-3330

Description

Buffer overflow in the UnitelWay Windows Device Driver, as used in Schneider Electric Unity Pro 6 and earlier, OPC Factory Server 3.34, Vijeo Citect 7.20 and earlier, Telemecanique Driver Pack 2.6 and earlier, Monitor Pro 7.6 and earlier, and PL7 Pro 4.5 and earlier, allows local users, and possibly remote attackers, to execute arbitrary code via an unspecified system parameter.

Affected products

Schneider Electric/Monitor Pro
cpe:2.3:a:schneider-electric:monitor_pro:*:*:*:*:*:*:*:*
Range: <=7.6
Schneider Electric/Opc Factory Server
cpe:2.3:a:schneider-electric:opc_factory_server:*:*:*:*:*:*:*:*
Range: <=3.34
Schneider Electric/Pl7 Pro
cpe:2.3:a:schneider-electric:pl7_pro:*:sp5:*:*:*:*:*:*
Range: <=4.5
Schneider Electric/Telemecanique Driver Pack
cpe:2.3:a:schneider-electric:telemecanique_driver_pack:*:*:*:*:*:*:*:*
Range: <=2.6
Schneider Electric/Unity Pro
cpe:2.3:a:schneider-electric:unity_pro:*:*:*:*:*:*:*:*
Range: <=6.0
Schneider Electric/Vijeo Citect
cpe:2.3:a:schneider-electric:vijeo_citect:*:*:*:*:*:*:*:*
Range: <=7.20

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/46534nvdVendor Advisory
www.scada.schneider-electric.com/sites/scada/en/login/vijeo-citect-unitelway-windows-device-driver.pagenvdVendor Advisory
www.us-cert.gov/control_systems/pdf/ICSA-11-277-01.pdfnvdUS Government Resource
www.securityfocus.com/bid/50319nvd
www.securitytracker.com/idnvd
exchange.xforce.ibmcloud.com/vulnerabilities/70882nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000