5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.088 Low
EPSS
Percentile
94.6%
Wibu-Systems CodeMeter contains a remote denial of service vulnerability when receiving specially crafted packets.
Wibu-Systems CodeMeter v4.30c and v4.10b contain a remote denial of service vulnerability when receiving specially crafted packets. Wibu-Systems CodeMeter listens on TCP/22350 for incoming connections. An attacker can send a specially crafted packet causing CodeMeter.exe to crash.
A remote, unauthenticated attacker could cause the Wibu-Systems CodeMeter application to crash creating a denial-of-service condition.
Apply an Update
This vulnerability has been addressed in Wibu-Systems CodeMeter Software v4.40.
Restrict access
Restrict access to the Wibu-Systems CodeMeter network interface to trusted users and networks.
659515
Filter by status: All Affected Not Affected Unknown
Filter by content: __ Additional information available
__ Sort by: Status Alphabetical
Expand all
Javascript is disabled. Click here to view vendors.
Updated: January 16, 2012
Affected
We have not received a statement from the vendor.
We are not aware of further vendor information regarding this vulnerability.
Updated: January 16, 2012
Affected
We have not received a statement from the vendor.
We are not aware of further vendor information regarding this vulnerability.
Notified: October 25, 2011 Updated: January 03, 2012
Affected
This vulnerability has been addressed in Wibu-Systems CodeMeter Software v4.40.
We are not aware of further vendor information regarding this vulnerability.
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
Thanks to Kuang-Chun Hung of Information and Communication Security Technology Center for reporting this vulnerability.
This document was written by Michael Orlando.
CVE IDs: | CVE-2011-4057 |
---|---|
Severity Metric: | 0.14 Date Public: |