optima apiftp server <= 1.5.2.13 - Multiple Vulnerabilities

No description provided by source. Luigi Auriemma Application: Optima APIFTP Server http://www.optimalog.com/home.html Versions: = 1.5.2.13 Platforms: Windows Bugs: A NULL pointer B endless loop Exploitation: remote Date: 13 Nov 2011 Author: Luigi Auriemma e-mail: [email protected] web:...

Optima PLC APIFTP Server Denial of Service Vulnerabilities

Optima PLC APIFTP Server is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2012-5049

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service infinite loop via a malformed packet...

CVE-2012-5048

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted packet...

Null pointer dereference

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted packet...

Design/Logic Flaw

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service infinite loop via a malformed packet...

CVE-2012-5048

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted packet...

CVE-2012-5049

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service infinite loop via a malformed packet...

CVE-2012-5048

CVE-2012-5048 affects Optima PLC APIFTP Server in Optima PLC 1.5.2 and earlier, enabling remote denial of service via a crafted packet that triggers a NULL pointer dereference and daemon crash. The OpenVAS entry and ICS-CERT advisory corroborate a DoS impact, with CVSS v2 base score 7.8. Mitigati...

CVE-2012-5049

CVE-2012-5049 concerns the Optima PLC APIFTP Server. Public docs describe a denial-of-service vulnerability: a malformed packet can trigger a loop that consumes CPU, potentially crashing the server. The issue is tied to the APIFTP component in Optimalog Optima PLC 1.5.2 and earlier. Related OpenV...

Optimalog Optima PLC Multiple Vulnerabilities

Overview Independent researcher Luigi Auriemma identified a NULL Pointer Dereference and an Infinite Loop and released proof-of-concept exploit code for Optimalog’s Optima PLC application without coordination with ICS-CERT, the vendor, or any other coordinating entity known to ICS-CERT. Optimalog...

optima apiftp server 1.5.2.13 - Multiple Vulnerabilities

optima apiftp server 1.5.2.13 - Multiple Vulnerabilities Luigi Auriemma Application: Optima APIFTP Server http://www.optimalog.com/home.html Versions: = 1.5.2.13 Platforms: Windows Bugs: A NULL pointer B endless loop Exploitation: remote Date: 13 Nov 2011 Author: Luigi Auriemma e-mail:...

optima apiftp server 1.5.2.13 - Multiple Vulnerabilities

Luigi Auriemma Application: Optima APIFTP Server http://www.optimalog.com/home.html Versions: = 1.5.2.13 Platforms: Windows Bugs: A NULL pointer B endless loop Exploitation: remote Date: 13 Nov 2011 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bugs 3 The Co...