Multiple Moxa Products CVE-2019-19707 Denial of Service Vulnerability

Description

Multiple Moxa Products are prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause resource exhaustion to the affected device, denying service to legitimate users.

Technologies Affected

• Moxa EDS-G508E Series 6
• Moxa EDS-G512E Series 6
• Moxa EDS-G516E Series 6

Recommendations

Block external access at the network boundary, unless external parties require service.
If global access isn’t needed, filter access to the affected computer at the network boundary. Restricting access to only trusted computers and networks might greatly reduce the likelihood of successful exploits.

Run all software as a nonprivileged user with minimal access rights.
To reduce the potential damage that successful exploits may achieve, run all nonadministrative software as a user with the least amount of privileges required to successfully operate.

Deploy network intrusion detection systems to monitor network traffic for malicious activity.
Deploy NIDS to detect and block attacks and anomalous activity such as requests containing suspicious URI sequences. Since the webserver may log such requests, review its logs regularly.

Updates are available. Please see the references or vendor advisory for more information.