29 matches found
CVE-2021-21778
A denial of service vulnerability exists in the ASDU message processing functionality of MZ Automation GmbH lib60870.NET 2.2.0. A specially crafted network request can lead to loss of communications. An attacker can send an unauthenticated message to trigger this vulnerability...
CVE-2021-21778
CVE-2021-21778 affects MZ Automation GmbH’s lib60870.NET 2.2.0. The denial-of-service arises in the ASDU message processing path when handling IEC60870-5-104 messages. According to TALOS, the vulnerable code checks if (msgLength - bufPos) is large enough for the ASDU header, but if this check fai...
CVE-2021-21778
A denial of service vulnerability exists in the ASDU message processing functionality of MZ Automation GmbH lib60870.NET 2.2.0. A specially crafted network request can lead to loss of communications. An attacker can send an unauthenticated message to trigger this vulnerability...
MZ Automation GmbH lib60870.NET ASDU message processing denial of service vulnerability
Summary A denial of service vulnerability exists in the ASDU message processing functionality of MZ Automation GmbH lib60870.NET 2.2.0. A specially crafted network request can lead to loss of communications. An attacker can send an unauthenticated message to trigger this vulnerability. Tested...
CVE-2019-6137
An issue was discovered in lib60870 2.1.1. LinkLayersetAddress in linklayer/linklayer.c has a NULL pointer dereference...
Null pointer dereference
An issue was discovered in lib60870 2.1.1. LinkLayersetAddress in linklayer/linklayer.c has a NULL pointer dereference...
CVE-2019-6137
An issue was discovered in lib60870 2.1.1. LinkLayersetAddress in linklayer/linklayer.c has a NULL pointer dereference...
CVE-2019-6137
An issue was discovered in lib60870 2.1.1. LinkLayersetAddress in linklayer/linklayer.c has a NULL pointer dereference...
CVE-2019-6137
CVE-2019-6137 affects lib60870 2.1.1. The issue is a NULL pointer dereference in LinkLayer_setAddress within link_layer/link_layer.c. The vulnerability’s impact and exact exploit scenario are described in the vulnerability references, but the connected documents do not provide concrete remediatio...