CVE-2012-5049

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service infinite loop via a malformed packet...

CVE-2012-5048

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted packet...

Null pointer dereference

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted packet...

CVE-2012-5048

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted packet...

CVE-2012-5048

CVE-2012-5048 affects Optima PLC APIFTP Server in Optima PLC 1.5.2 and earlier, enabling remote denial of service via a crafted packet that triggers a NULL pointer dereference and daemon crash. The OpenVAS entry and ICS-CERT advisory corroborate a DoS impact, with CVSS v2 base score 7.8. Mitigati...

CVE-2012-5049

CVE-2012-5049 concerns the Optima PLC APIFTP Server. Public docs describe a denial-of-service vulnerability: a malformed packet can trigger a loop that consumes CPU, potentially crashing the server. The issue is tied to the APIFTP component in Optimalog Optima PLC 1.5.2 and earlier. Related OpenV...

Optimalog Optima PLC Multiple Vulnerabilities

Overview Independent researcher Luigi Auriemma identified a NULL Pointer Dereference and an Infinite Loop and released proof-of-concept exploit code for Optimalog’s Optima PLC application without coordination with ICS-CERT, the vendor, or any other coordinating entity known to ICS-CERT. Optimalog...