The vulnerability of TCP protocols in real-time operating systems like Wind River VxWorks allows attackers to trigger service interruptions.

🗓️ 27 Mar 2020 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Transmission Protocol flaw in Wind River VxWorks enables interruptions from crafted packets due to missing Urgent Pointer value.

Reporter	Title	Published	Views	Family All 37
0day.today	VxWorks 6.8 - TCP Urgent Pointer = 0 Integer Underflow Exploit	12 Aug 201900:00	–	zdt
Tenable Nessus	VxWorks 6.x < 6.9.4 Multiple Vulnerabilities (URGENT/11)	29 Jul 201900:00	–	nessus
Tenable Nessus	Windriver Vxworks Improper Restriction of Operations within the Bounds of a Memory Buffer	8 Nov 201900:00	–	nessus
Tenable Nessus	SonicWall SonicOS Firewall Multiple Management Vulnerabilities (URGENT/11)	29 Jul 201900:00	–	nessus
Tenable Nessus	ABB Integer Underflow in Wind River VxWorks (CVE-2019-12255)	10 May 202300:00	–	nessus
Tenable Nessus	Hirschmann HiOS Switches Integer Underflow (CVE-2019-12255)	10 Jun 202400:00	–	nessus
Tenable Nessus	Siemens Integer Underflow in Wind River VxWorks (CVE-2019-12255)	7 Feb 202200:00	–	nessus
Tenable Nessus	Wind River VxWorks Multiple Vulnerabilities (URGENT/11)	29 Jul 201900:00	–	nessus
Tenable Nessus	Xerox WorkCentre Multiple Vulnerabilities (XRX19-016) (URGENT/11)	29 Jul 201900:00	–	nessus
Broadcom	BSA-2019-840	30 Jul 201900:00	–	broadcom

Vulners

Node

red_lion_controls,siprotec_5_cpu_cp100Range≤7.91

OR

red_lion_controls,siprotec_5_cpu_cp300Range≤7.91

OR

red_lion_controls,siprotec_5_cpu_cp200Range≤7.59

OR

red_lion_controls,siprotec_5_cpu_cp300Range≤8.01

OR

red_lion_controls,siprotec_5_cpu_cp100Range≤8.01

OR

wind_river_systems,vxworksRange6.6–6.9.3

Source	Link
belden	www.belden.com/hubfs/support/security/bulletins/Belden_Security_Bulletin_BSECV-2019-05_1v3.pdf
packetstormsecurity	www.packetstormsecurity.com/files/154022/VxWorks-6.8-Integer-Underflow.html
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-189842.pdf
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-632562.pdf
security	www.security.netapp.com/advisory/ntap-20190802-0001/
support2	www.support2.windriver.com/index.php
support2	www.support2.windriver.com/index.php
windriver	www.windriver.com/security/announcements/tcp-ip-network-stack-ipnet-urgent11/
web	www.web.nvd.nist.gov/view/vuln/detail
belden	www.belden.com/hubfs/support/security/bulletins/Belden_Security_Bulletin_BSECV-2019-05_1v3.pdf

27 Mar 2020 00:00Current

7.2High risk

Vulners AI Score7.2

CVSS 39.8

CVSS 210

EPSS0.7525

Wind River VxWorks Transmission Protocol Urgent Pointer Crafted packets Service interruptions