Lucene search
TalosCVELIST:CVE-2019-5074HistoryDec 18, 2019 - 7:30 p.m.
CVE-2019-5074
2019-12-1819:30:27
talos
www.cve.org
An exploitable stack buffer overflow vulnerability exists in the iocheckd service ‘‘I/O-Check’’ functionality of WAGO PFC200 Firmware version 03.01.07(13), WAGO PFC200 Firmware version 03.00.39(12) and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a stack buffer overflow, resulting in code execution. An attacker can send unauthenticated packets to trigger this vulnerability.
CNA Affected
[
{
"product": "WAGO PFC200",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Firmware version 03.01.07(13)"
},
{
"status": "affected",
"version": "Firmware version 03.00.39(12)"
}
]
},
{
"product": "WAGO PFC100",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Firmware version 03.00.39(12)"
}
]
}
]Related
cve
cve
CVE-2019-5074
2019-12-18 20:15:16
nessus
nessus
WAGO I/O-CHECK Buffer Access with Incorrect Length Value (CVE-2019-5074)
2023-02-14 00:00:00
prion
prion
Stack overflow
2019-12-18 20:15:00
talos
talos
nvd
nvd
CVE-2019-5074
2019-12-18 20:15:16
talosblog
talosblog
Vulnerability Spotlight: Multiple vulnerabilities in WAGO PFC200
2019-12-16 07:29:20
ics
ics
WAGO I/O-CHECK
2020-03-05 12:00:00