Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-5009
HistoryDec 25, 2011 - 1:55 a.m.

CVE-2011-5009

2011-12-2501:55:04
[email protected]
web.nvd.nist.gov
22
cmpwebserver.dll
3s codesys
denial of service
null pointer dereference
http post
http request method
cve-2011-5009
nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.068 Low

EPSS

Percentile

93.9%

JSON

The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service (NULL pointer dereference) via (1) a crafted Content-Length in an HTTP POST or (2) an invalid HTTP request method.

Affected configurations

NVD
Node
3ssoftwarecodesysMatch3.4sp4

Related

checkpoint_advisories 1
prion 1
nvd 1
cvelist 1
ics 1
openvas 1
checkpoint_advisories
checkpoint_advisories
Smart Software Solutions CoDeSys CmpWebServer Content-Length NULL Pointer (CVE-2011-5009)
2013-04-14 00:00:00
prion
prion
Null pointer dereference
2011-12-25 01:55:00
nvd
nvd
CVE-2011-5009
2011-12-25 01:55:04
cvelist
cvelist
CVE-2011-5009
2011-12-25 01:00:00
ics
ics
3S CoDeSys Vulnerabilities
2018-09-06 12:00:00
openvas
openvas
Codesys CmpWebServer Multiple Vulnerabilities
2011-12-06 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.068 Low

EPSS

Percentile

93.9%

JSON
Related for CVE-2011-5009
checkpoint_advisories1prion1nvd1cvelist1ics1openvas1