CVE-2011-5007

CVE-2011-5007 is a stack-based buffer overflow in the 3S CoDeSys WebServer (CmpWebServer.dll) used by ABB AC500 PLC and other products. An overly long URI sent to port 8080 can overflow a stack buffer and allow a remote attacker to potentially execute arbitrary code. Affected versions include CoD...

CVE-2011-5009

The CVE-2011-5009 vulnerability affects 3S CoDeSys CmpWebServer (Control service) as part of CoDeSys 3.4 SP4 Patch 2. It stems from insufficient validation of incoming HTTP requests, leading to a NULL pointer dereference when handling a crafted Content-Length in an HTTP POST or an invalid HTTP me...

CVE-2011-5008

CVE-2011-5008 is an integer overflow in the GatewayService of 3S CoDeSys (versions affected: CoDeSys 2.3 and 3.4; patched in V3.5 and V2.3.9.32). A large size value in the packet header enables remote attackers to trigger a heap-based buffer overflow and potentially execute arbitrary code. Attack...

CVE-2011-5058

The CVE-2011-5058 entry affects 3S CoDeSys 3.4 SP4 Patch 2: the CmbWebserver.dll in the Control service allows remote attackers to create arbitrary directories under the web root by specifying a non-existent directory with backslash characters in an HTTP GET request. This is the concrete vulnerab...