CVE-2014-9203

Опубликовано: 07 фев. 2015

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Buffer overflow in the Field Device Tool (FDT) Frame application in the HART Device Type Manager (DTM) library, as used in MACTek Bullet DTM 1.00.0, GE Vector DTM 1.00.0, GE SVi1000 Positioner DTM 1.00.0, GE SVI II AP Positioner DTM 2.00.1, and GE 12400 Level Transmitter DTM 1.00.0, allows remote attackers to cause a denial of service (DTM outage) via crafted packets.

Ссылки

http://www.geoilandgas.com/securityadvisory
Vendor Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-15-036-01
Third Party Advisory
US Government Resource
http://www.geoilandgas.com/securityadvisory
Vendor Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-15-036-01
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ge:12400_level_transmitter_device_type_manager:1.00.0:*:*:*:*:*:*:*

cpe:2.3:a:ge:svi_ii_ap_positioner_device_type_manager:2.00.1:*:*:*:*:*:*:*

cpe:2.3:a:ge:vector_device_type_manager:1.00.0:*:*:*:*:*:*:*

Конфигурация 2

cpe:2.3:a:mactek:bullet_device_type_manager:1.00.0:*:*:*:*:*:*:*

EPSS

Процентиль: 73%

0.00759

Низкий

5 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-j5pv-6f4x-r7c8

github

больше 3 лет назад