CVE-2012-2607 Information

Description

The Johnson Controls CK721-A controller with firmware before SSM4388_03.1.0.14_BB allows remote attackers to perform arbitrary actions via crafted packets to TCP port 41014 (aka the download port).

Reference

http://www.kb.cert.org/vuls/id/977312 http://www.kb.cert.org/vuls/id/MORO-8UYN8P