Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server before 2.3.9.34 allow remote attackers to execute arbitrary code via opcode (1) 0x3ef or (2) 0x3f0.
References
Link | Resource |
---|---|
http://zerodayinitiative.com/advisories/ZDI-15-441/ | Third Party Advisory VDB Entry |
http://zerodayinitiative.com/advisories/ZDI-15-442/ | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-15-258-02 | Third Party Advisory US Government Resource |
Configurations
History
02 Dec 2022, 22:57
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://zerodayinitiative.com/advisories/ZDI-15-441/ - Third Party Advisory, VDB Entry | |
References | (MISC) http://zerodayinitiative.com/advisories/ZDI-15-442/ - Third Party Advisory, VDB Entry |
11 Jul 2022, 11:15
Type | Values Removed | Values Added |
---|---|---|
Summary | Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server before 2.3.9.34 allow remote attackers to execute arbitrary code via opcode (1) 0x3ef or (2) 0x3f0. |
Information
Published : 2015-09-18 22:59
Updated : 2023-12-10 11:46
NVD link : CVE-2015-6460
Mitre link : CVE-2015-6460
CVE.ORG link : CVE-2015-6460
JSON object : View
Products Affected
3s-smart
- codesys_gateway_server
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer