Lucene search
PRIOn knowledge basePRION:CVE-2017-11498HistoryOct 03, 2017 - 1:29 a.m.
Buffer overflow
2017-10-0301:29:00
PRIOn knowledge base
www.prio-n.com
3
Buffer overflow in hasplms in Gemalto ACC (Admin Control Center), all versions ranging from HASP SRM 2.10 to Sentinel LDK 7.50, allows remote attackers to shut down the remote process (a denial of service) via a language pack (ZIP file) with invalid HTML files.
| CPE | Name | Operator | Version |
|---|---|---|---|
| sentinel_ldk_rte | eq | 3.0 | |
| sentinel_ldk_rte | eq | 7.1 | |
| sentinel_ldk_rte | eq | 2.10 | |
| sentinel_ldk_rte | eq | 7.50 |
References
www.securityfocus.com/bid/102739
www.securityfocus.com/bid/102906
cert-portal.siemens.com/productcert/pdf/ssa-727467.pdf
ics-cert.kaspersky.com/advisories/2017/07/28/klcert-17-001-sentinel-ldk-rte-language-pack-with-invalid-html-files-leads-to-denial-of-service/
ics-cert.us-cert.gov/advisories/ICSA-18-018-01
ics-cert.us-cert.gov/advisories/ICSA-18-093-01
www.iotvillage.org/slides_dc25/Sergey_Vlad_DEFCON_IOT_Village_Public2017.pptx
Related
nvd
nvd
CVE-2017-11498
2017-10-03 01:29:01
cvelist
cvelist
CVE-2017-11498
2017-10-02 21:00:00
cve
cve
CVE-2017-11498
2017-10-03 01:29:01
ics
ics
Gemalto Sentinel License Manager
2018-02-08 12:00:00
Siemens SIMATIC WinCC Add-On (Update A)
2018-01-18 00:00:00
Siemens SIMATIC WinCC Add-On (Update A)
2018-02-27 12:00:00
securelist
securelist
A silver bullet for the attacker
2018-01-22 15:51:56