Das U-Boot CVE-2019-13103 Denial of Service Vulnerability

Description

Das U-Boot is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the affected application resulting in a denial-of-service condition. Das U-Boot versions through 2019.07-rc4 are vulnerable.

Technologies Affected

• Siemens RUGGEDCOM RSG2488
• Siemens RUGGEDCOM RSG920P
• Siemens RUGGEDCOM RST2228
• Siemens RuggedCom ROS
• U-Boot Das U-Boot 1.3.0-rc1
• U-Boot Das U-Boot 2008.10
• U-Boot Das U-Boot 2009.01
• U-Boot Das U-Boot 2010.03
• U-Boot Das U-Boot 2011.03
• U-Boot Das U-Boot 2012.04
• U-Boot Das U-Boot 2013.01
• U-Boot Das U-Boot 2014.01
• U-Boot Das U-Boot 2015.01
• U-Boot Das U-Boot 2016.01
• U-Boot Das U-Boot 2017.03
• U-Boot Das U-Boot 2017.05
• U-Boot Das U-Boot 2017.07
• U-Boot Das U-Boot 2017.09
• U-Boot Das U-Boot 2017.11
• U-Boot Das U-Boot 2018.01
• U-Boot Das U-Boot 2018.03
• U-Boot Das U-Boot 2018.05
• U-Boot Das U-Boot 2018.07
• U-Boot Das U-Boot 2018.09
• U-Boot Das U-Boot 2018.11
• U-Boot Das U-Boot 2019.01
• U-Boot Das U-Boot 2019.04
• U-Boot Das U-Boot 2019.07-rc1
• U-Boot Das U-Boot 2019.07-rc2
• U-Boot Das U-Boot 2019.07-rc3
• U-Boot Das U-Boot 2019.07-rc4

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Allow only trusted individuals to have user accounts and local access to the resources.

Updates are available. Please see the references or vendor advisory for more information.