4 matches found
Heap overflow
An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector...
Design/Logic Flaw
An issue has been found in libIEC61850 v1.3. It is a SEGV in EthernetreceivePacket in ethernetbsd.c...
CVE-2018-19093
An issue has been found in libIEC61850 v1.3. It is a SEGV in ControlObjectClientsetCommandTerminationHandler in client/clientcontrol.c. NOTE: the software maintainer disputes this because it requires incorrect usage of the clientexamplecontrol program...
Null pointer dereference
An issue has been found in libIEC61850 v1.3. It is a NULL pointer dereference in ClientDataSetgetValues in client/iedconnection.c...