CVE-2013-2804

Опубликовано: 28 авг. 2013

Источник: nvd

CVSS2: 7.1

EPSS Низкий

Описание

The DNP Master Driver in Software Toolbox TOP Server before 5.12.140.0 allows remote attackers to cause a denial of service (master-station infinite loop) via crafted DNP3 packets to TCP port 20000 and allows physically proximate attackers to cause a denial of service (master-station infinite loop) via crafted input over a serial line.

Ссылки

http://ics-cert.us-cert.gov/advisories/ICSA-13-234-02
US Government Resource
http://support.softwaretoolbox.com/app/answers/detail/a_id/3014
Vendor Advisory
http://ics-cert.us-cert.gov/advisories/ICSA-13-234-02
US Government Resource
http://support.softwaretoolbox.com/app/answers/detail/a_id/3014
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:softwaretoolbox:top_server:*:*:*:*:*:*:*:*

Версия до 5.12 (включая)

cpe:2.3:a:softwaretoolbox:top_server:4.0:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.1:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.2:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.3:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.4:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.5:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.6:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.7:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.8:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.9:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.10:*:*:*:*:*:*:*

cpe:2.3:a:softwaretoolbox:top_server:5.11:*:*:*:*:*:*:*

EPSS

Процентиль: 64%

0.00472

Низкий

7.1 High

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-gxrf-44mp-mv84

github

больше 3 лет назад