Unrated severityNVD Advisory· Published Apr 3, 2012· Updated Apr 29, 2026

CVE-2011-4535

Description

Buffer overflow in TurboPower Abbrevia before 4.0, as used in ScadaTEC ScadaPhone 5.3.11.1230 and earlier, ScadaTEC ModbusTagServer 4.1.1.81 and earlier, and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ZIP file.

Affected products

Craig Peterson/Turbopower Abbrevia
cpe:2.3:a:craig_peterson:turbopower_abbrevia:*:*:*:*:*:*:*:*
Range: <=3.05
Scadatec/Modbustagserver
cpe:2.3:a:scadatec:modbustagserver:*:*:*:*:*:*:*:*
Range: <=4.1.1.81
Scadatec/Scadaphone
cpe:2.3:a:scadatec:scadaphone:*:*:*:*:*:*:*:*
Range: <=5.3.11.1230

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sourceforge.net/projects/tpabbrevia/files/Abbrevia%204.0.zip/downloadnvdPatch
www.us-cert.gov/control_systems/pdf/ICSA-11-362-01.pdfnvdUS Government Resource

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.062
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000