Vulnerability Name:
CVE-2012-4706 (CCN-82254)
Assigned:
2012-08-28
Published:
2013-02-19
Updated:
2013-05-21
Summary:
Integer signedness error in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to cause a denial of service via a crafted packet that triggers a heap-based buffer overflow.
CVSS v3 Severity:
7.3 High
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
)
Exploitability Metrics:
Attack Vector (AV):
Network
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope:
Scope (S):
Unchanged
Impact Metrics:
Confidentiality (C):
Low
Integrity (I):
Low
Availibility (A):
Low
CVSS v2 Severity:
7.8 High
(CVSS v2 Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C
)
5.8 Medium
(Temporal CVSS v2 Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C
)
Exploitability Metrics:
Access Vector (AV):
Network
Access Complexity (AC):
Low
Authentication (Au):
None
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Complete
7.5 High
(CCN CVSS v2 Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P
)
5.5 Medium
(CCN Temporal CVSS v2 Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C
)
Exploitability Metrics:
Access Vector (AV):
Network
Access Complexity (AC):
Low
Athentication (Au):
None
Impact Metrics:
Confidentiality (C):
Partial
Integrity (I):
Partial
Availibility (A):
Partial
Vulnerability Type:
CWE-189
Vulnerability Consequences:
Gain Access
References:
Source: MITRE
Type: CNA
CVE-2012-4706
Source: MISC
Type: UNKNOWN
http://ics-cert.us-cert.gov/advisories/ICSA-13-050-01A
Source: CCN
Type: ICSA-13-050-01
3S CODESYS GATEWAY-SERVER MULTIPLE VULNERABILITIES
Source: CCN
Type: SA52253
3S CoDeSys Gateway Server Multiple Vulnerabilities
Source: CCN
Type: 3S - Smart Software Web site
CODESYS industrial IEC 61131-3 SPS-Programming
Source: CCN
Type: BID-58032
CoDeSys Gateway Server Multiple Remote Code Execution Vulnerabilities
Source: XF
Type: UNKNOWN
codesys-gatewayserver-bo(82254)
Vulnerable Configuration:
Configuration 1
:
cpe:/a:3s-software:codesys_gateway-server:2.3.5.1:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.5.2:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.5.3:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.6.0:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.7.0:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.8.0:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.8.1:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.8.2:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.9:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.9.1:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.9.2:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.9.3:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.9.4:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.9.5:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.9.18:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:2.3.9.19:*:*:*:*:*:*:*
OR
cpe:/a:3s-software:codesys_gateway-server:*:*:*:*:*:*:*:*
(Version <= 2.3.9.20)
Denotes that component is vulnerable
BACK
3s-software
codesys gateway-server 2.3.5.1
3s-software
codesys gateway-server 2.3.5.2
3s-software
codesys gateway-server 2.3.5.3
3s-software
codesys gateway-server 2.3.6.0
3s-software
codesys gateway-server 2.3.7.0
3s-software
codesys gateway-server 2.3.8.0
3s-software
codesys gateway-server 2.3.8.1
3s-software
codesys gateway-server 2.3.8.2
3s-software
codesys gateway-server 2.3.9
3s-software
codesys gateway-server 2.3.9.1
3s-software
codesys gateway-server 2.3.9.2
3s-software
codesys gateway-server 2.3.9.3
3s-software
codesys gateway-server 2.3.9.4
3s-software
codesys gateway-server 2.3.9.5
3s-software
codesys gateway-server 2.3.9.18
3s-software
codesys gateway-server 2.3.9.19
3s-software
codesys gateway-server *
Denotes that component is vulnerable