EUVD-2020-15312

Malware in sbrugna...

CVE-2020-22552

The Snap7 server component in version 1.4.1, when an attacker sends a crafted packet with COTP protocol the last-data-unit flag set to No and S7 writes a var function, the Snap7 server will be crashed...

CVE-2020-22552

The Snap7 server component in version 1.4.1, when an attacker sends a crafted packet with COTP protocol the last-data-unit flag set to No and S7 writes a var function, the Snap7 server will be crashed...

Code injection

The Snap7 server component in version 1.4.1, when an attacker sends a crafted packet with COTP protocol the last-data-unit flag set to No and S7 writes a var function, the Snap7 server will be crashed...

CVE-2020-22552

The Snap7 server component in version 1.4.1, when an attacker sends a crafted packet with COTP protocol the last-data-unit flag set to No and S7 writes a var function, the Snap7 server will be crashed...

CVE-2020-22552

The CVE-2020-22552 issue affects the Snap7 server component, specifically version 1.4.1, where an attacker sending a crafted COTP packet with the last-data-unit flag set to No and triggering a S7 writes a var function can crash the server. The root cause is described in the PT-2020-15480 report, ...

Code injection

Unspecified vulnerability in LiveData Server before 5.00.62 allows remote attackers to cause a denial of service exit via crafted Connection-Oriented Transport Protocol COTP packets...

LiveData Server fails to properly handle Connection-Oriented Transport Protocol packets

Overview The LiveData Server fails to handle malformed Connection-Oriented Transport Protocol COTP packets. This vulnerability may allow a remote attacker to crash the LiveData Server. Description The LiveData Server records and transmits data between two or more control systems. The...