CVE-2011-5009

The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service NULL pointer dereference via 1 a crafted Content-Length in an HTTP POST or 2 an invalid HTTP request method...

Null pointer dereference

The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service NULL pointer dereference via 1 a crafted Content-Length in an HTTP POST or 2 an invalid HTTP request method...

CVE-2011-5009

The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service NULL pointer dereference via 1 a crafted Content-Length in an HTTP POST or 2 an invalid HTTP request method...

CVE-2011-5009

The CVE-2011-5009 vulnerability affects 3S CoDeSys CmpWebServer (Control service) as part of CoDeSys 3.4 SP4 Patch 2. It stems from insufficient validation of incoming HTTP requests, leading to a NULL pointer dereference when handling a crafted Content-Length in an HTTP POST or an invalid HTTP me...

Smart Software Solutions CoDeSys Webserver URI Copying Stack Buffer Overflow

Added: 12/16/2011 CVE: CVE-2011-5007 BID: 50849 OSVDB: 77387 Background Smart Software Solutions GmbH 3S manufactures CoDeSys Web Server, a Supervisory Control and Data Acquisition/Human-Machine Interface SCADA/HMI product. The SCADA Web Server listens on TCP port 8080. Problem The CmpWebServer.d...