23 matches found
EUVD-2013-2729
Malware in sbrugna...
EUVD-2014-2383
Malware in sbrugna...
EUVD-2013-2722
Malware in sbrugna...
EUVD-2014-0793
Malware in sbrugna...
EUVD-2014-0792
Malware in sbrugna...
CVE-2013-2783
The DNP3 driver in IOServer drivers 1.0.19.0 allows remote attackers to cause a denial of service infinite loop or obtain unspecified control via crafted data to TCP port 20000...
CVE-2014-0762
The CG Automation Software DNP3 driver, used in the ePAQ-9410 Substation Gateway products, does not validate input correctly. An attacker could cause the software to go into an infinite loop, causing the process to crash. The system must be restarted manually to clear the condition...
Design/Logic Flaw
The DNP3 driver in CG Automation ePAQ-9410 Substation Gateway allows remote attackers to cause a denial of service infinite loop or process crash via a crafted TCP packet...
CVE-2014-0762
The CVE-2014-0762 issue affects the CG Automation DNP3 driver used in the ePAQ-9410 Substation Gateway. The root cause is improper input validation that can cause an infinite loop, crashing the process and requiring a manual restart, affecting availability. The IP-based path could be exploited re...
CVE-2014-0761 CG Automation ePAQ-9410 Substation Gateway Improper Input Validation
The DNP3 driver in CG Automation ePAQ-9410 Substation Gateway allows remote attackers to cause a denial of service infinite loop or process crash via a crafted TCP packet...
GE Proficy HMI/SCADA DNP3 Driver Input Validation
OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on October 14, 2014, and is being released to the NCCIC/ICS-CERT web site. Independent researcher Adam Crain of Automatak has identified an improper input validation in the DNP3 driver provided by Catapult Software...
Design/Logic Flaw
COPA-DATA zenon DNP3 NG driver DNP3 master 7.10 and 7.11 through 7.11 SP0 build 10238 and zenon DNP3 Process Gateway DNP3 outstation 7.11 SP0 build 10238 and earlier allow physically proximate attackers to cause a denial of service infinite loop and process crash via crafted input over a serial...
CVE-2013-6142
DNP3Driver.exe in the DNP3 driver in Schneider Electric ClearSCADA 2010 R2 through 2010 R3.1 and SCADA Expert ClearSCADA 2013 R1 through 2013 R1.2 allows remote attackers to cause a denial of service resource consumption via IP packets containing errors that trigger event-journal messages...
Design/Logic Flaw
DNP3Driver.exe in the DNP3 driver in Schneider Electric ClearSCADA 2010 R2 through 2010 R3.1 and SCADA Expert ClearSCADA 2013 R1 through 2013 R1.2 allows remote attackers to cause a denial of service resource consumption via IP packets containing errors that trigger event-journal messages...
Design/Logic Flaw
The 1 Catapult DNP3 I/O driver before 7.2.0.60 and the 2 GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe aka the DNP master station server in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY and iFIX, allow remote attackers to cause a denial of service...
CVE-2013-2790
The master-station DNP3 driver before driver19.exe, and Beta2041.exe, in IOServer allows remote attackers to cause a denial of service infinite loop via crafted DNP3 packets to TCP port 20000...
CVE-2013-2790
The CVE-2013-2790 vulnerability affects IOServer’s master-station DNP3 driver prior to driver19.exe and Beta2041.exe. It stems from improper input validation on TCP port 20000 (DNP3), allowing remote attackers to trigger an infinite loop and cause a denial of service. ICS-CERT confirms remote exp...
GE Proficy DNP3 Improper Input Validation
OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on October 24, 2013, and is now being released to the NCCIC/ICS-CERT Web site. General Electric GE Intelligent Platforms reported to NCCIC/ICS-CERT an improper input validation vulnerability in the DNP3 driver used...
Catapult Software DNP3 Driver Improper Input Validation
OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on October 24, 2013, and is now being released to the NCCIC/ICS-CERT Web site. Adam Crain of Automatak and independent researcher Chris Sistrunk have identified an improper input validation in Catapult Software’s DN...
Design/Logic Flaw
The DNP3 driver in IOServer drivers 1.0.19.0 allows remote attackers to cause a denial of service infinite loop or obtain unspecified control via crafted data to TCP port 20000...