Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiAnonymousZDI-14-425
HistoryDec 12, 2014 - 12:00 a.m.

Trihedral VTScada Integer Overflow Denial of Service Vulnerability

2014-12-1200:00:00
Anonymous
www.zerodayinitiative.com
13

EPSS

0.082

Percentile

94.5%

JSON

This vulnerability allows remote attackers to cause a denial of service to vulnerable installations of Trihedral VTScada. Authentication is not required to exploit this vulnerability. The specific flaw exists within the included HTTP server. By providing a small negative content length, an attacker is able to cause an integer overflow, resulting in the allocation of too small a buffer. The resulting heap overwrite will terminate the HTTP server.

Related

cvelist 1
checkpoint_advisories 1
ics 1
cve 1
nvd 1
prion 1
cvelist
cvelist
CVE-2014-9192
2014-12-11 15:00:00
checkpoint_advisories
checkpoint_advisories
Trihedral VTScada Web Interface Integer Overflow (CVE-2014-9192)
2015-02-02 00:00:00
ics
ics
Trihedral Engineering Limited VTScada Integer Overflow Vulnerability
2018-08-23 12:00:00
cve
cve
CVE-2014-9192
2014-12-11 15:59:04
nvd
nvd
CVE-2014-9192
2014-12-11 15:59:04
prion
prion
Integer overflow
2014-12-11 15:59:00

EPSS

0.082

Percentile

94.5%

JSON
Related for ZDI-14-425
cvelist1checkpoint_advisories1ics1cve1nvd1prion1