3 matches found
3S CoDeSys Vulnerabilities
Overview This advisory is a follow-up to the alert update, ICS-ALERT-11-336-01A 3S CoDeSys Vulnerabilities, which was released on the ICS-CERT Web page on December 02, 2011. Security researcher Celil Unuver SignalSec LLC and independent researcher Luigi Auriemma have identified vulnerabilities in...
CVE-2011-5008
CVE-2011-5008 is an integer overflow in the GatewayService of 3S CoDeSys (versions affected: CoDeSys 2.3 and 3.4; patched in V3.5 and V2.3.9.32). A large size value in the packet header enables remote attackers to trigger a heap-based buffer overflow and potentially execute arbitrary code. Attack...
Codesys CmpWebServer Multiple Vulnerabilities
Codesys is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...