← back
CVE-2008-2005

CVE-2008-2005

EPSS 16.3%
The SuiteLink Service (aka slssvc.exe) in WonderWare SuiteLink before 2.0 Patch 01, as used in WonderWare InTouch 8.0, allows remote attackers to cause a denial of service (NULL pointer dereference and service shutdown) and possibly execute arbitrary code via a large length value in a Registration packet to TCP port 5413, which causes a memory allocation failure.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/6474unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/30063https://exchange.xforce.ibmcloud.com/vulnerabilities/42221https://www.exploit-db.com/exploits/6474http://www.coresecurity.com/?action=item&id=2187http://www.kb.cert.org/vuls/id/596268http://www.securityfocus.com/archive/1/491623/100/0/threadedhttp://www.securityfocus.com/bid/28974http://www.securitytracker.com/id?1019966