CVE-2014-0783

Yokogawa CENTUM CS 3000 Stack-based Buffer Overflow

CVSS 9 EPSS 68.4%CWE-121

Stack-based buffer overflow in BKHOdeq.exe in Yokogawa CENTUM CS 3000 R3.09.50 and earlier allows remote attackers to execute arbitrary code via a crafted TCP packet.

AV:N/AC:L/Au:N/C:P/I:P/A:C

Productos afectados

Yokogawa · CENTUM CS 3000

PoCs públicas encontradas — 1

exploitdbwww.exploit-db.com/exploits/32209no verificado

⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://ics-cert.us-cert.gov/advisories/ICSA-14-070-01 https://community.rapid7.com/community/metasploit/blog/2014/03/10/yokogawa-centum-cs3000-vulnerabilities https://www.cisa.gov/news-events/ics-advisories/icsa-14-070-01a http://www.securityfocus.com/bid/66111 http://www.securityfocus.com/bid/66130 http://www.yokogawa.com/dcs/security/ysar/dcs-ysar-index-en.htm.