3 matches found
CVE-2019-5166
An exploitable stack buffer overflow vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 version 03.02.0214. A specially crafted XML cache file written to a specific location on the device can cause a stack buffer overflow, resulting in code execution. An attack...
Wago PFC200 iocheckd service 'I/O-Check' cache DNS code execution vulnerability (CVE-2019-5166)
An exploitable stack buffer overflow vulnerability exists in the iocheckd service I/O-Check' functionality of WAGO PFC 200 version 03.02.0214. A specially crafted XML cache file written to a specific location on the device can cause a stack buffer overflow, resulting in code execution. An attacke...
CVE-2019-5166
CVE-2019-5166 affects the WAGO PFC200 controller, specifically the iocheckd service’s IC/“I/O-Check” functionality. A stack-based buffer overflow occurs while parsing a DNS value embedded in the cached XML file /tmp/iocheckCache.xml, exploitable via a crafted DNS parameter during a BC_SaveParamet...