2 matches found
Wago PFC200 iocheckd service 'I/O-Check' cache Code Execution (CVE-2019-5179)
An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service I/O-Check' functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file. This plugin only works with Tenable.ot...
CVE-2019-5179
The CVE-2019-5179 entry concerns the WAGO PFC200 controller with firmware 03.02.02(14). The iocheckd service’s I/O-Check cache parsing (via the file /tmp/iocheckCache.xml) is vulnerable to a stack-based overflow triggered by crafted XML content, enabling code execution. Talos documents multiple c...