Unrated severityNVD Advisory· Published Mar 29, 2015· Updated May 6, 2026

CVE-2014-9205

Description

Stack-based buffer overflow in the PmBase64Decode function in an unspecified demonstration application in MICROSYS PROMOTIC stable before 8.2.19 and PROMOTIC development before 8.3.2 allows remote attackers to execute arbitrary code by providing a large amount of data.

Affected products

Microsys/Promotic2 versions
cpe:2.3:a:microsys:promotic:*:*:*:*:development:*:*:*+ 1 more
- cpe:2.3:a:microsys:promotic:*:*:*:*:development:*:*:*range: <=8.3.1
- cpe:2.3:a:microsys:promotic:*:*:*:*:stable:*:*:*range: <=8.2.18

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.promotic.eu/en/pmdoc/News.htmnvdVendor Advisory
ics-cert.us-cert.gov/advisories/ICSA-15-062-01nvdThird Party AdvisoryUS Government Resource
www.zerodayinitiative.com/advisories/ZDI-15-091/nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000