Search Results | AttackerKB

12 Total Results

Displaying 1-10 of 12

Attacker Value

Unknown

CVE-2019-1010300

Disclosure Date: July 15, 2019 (last updated November 27, 2024)

mz-automation libiec61850 1.3.2 1.3.1 1.3.0 is affected by: Buffer Overflow. The impact is: Software crash. The component is: server_example_complex_array. The attack vector is: Send a specific MMS protocol packet.

Attacker Value

Unknown

CVE-2019-6719

Disclosure Date: January 23, 2019 (last updated November 27, 2024)

An issue has been found in libIEC61850 v1.3.1. There is a use-after-free in the getState function in mms/iso_server/iso_server.c, as demonstrated by examples/server_example_goose/server_example_goose.c and examples/server_example_61400_25/server_example_61400_25.c.

Attacker Value

Unknown

CVE-2019-6138

Disclosure Date: January 11, 2019 (last updated November 27, 2024)

An issue has been found in libIEC61850 v1.3.1. Memory_malloc and Memory_calloc in hal/memory/lib_memory.c have memory leaks when called from mms/iso_mms/common/mms_value.c, server/mms_mapping/mms_mapping.c, and server/mms_mapping/mms_sv.c (via common/string_utilities.c), as demonstrated by iec61850_9_2_LE_example.c.

Attacker Value

Unknown

CVE-2019-6135

Disclosure Date: January 11, 2019 (last updated November 27, 2024)

An issue has been found in libIEC61850 v1.3.1. Memory_malloc in hal/memory/lib_memory.c has a memory leak when called from Asn1PrimitiveValue_create in mms/asn1/asn1_ber_primitive_value.c, as demonstrated by goose_publisher_example.c and iec61850_9_2_LE_example.c.

Attacker Value

Unknown

CVE-2019-6136

Disclosure Date: January 11, 2019 (last updated November 27, 2024)

An issue has been found in libIEC61850 v1.3.1. Ethernet_setProtocolFilter in hal/ethernet/linux/ethernet_linux.c has a SEGV, as demonstrated by sv_subscriber_example.c and sv_subscriber.c.

Attacker Value

Unknown

CVE-2018-19185

Disclosure Date: November 12, 2018 (last updated November 27, 2024)

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoder_encodeOctetString in mms/asn1/ber_encoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector.

Attacker Value

Unknown

CVE-2018-19121

Disclosure Date: November 09, 2018 (last updated November 27, 2024)

An issue has been found in libIEC61850 v1.3. It is a SEGV in Ethernet_receivePacket in ethernet_bsd.c.

Attacker Value

Unknown

CVE-2018-19122

Disclosure Date: November 09, 2018 (last updated November 27, 2024)

An issue has been found in libIEC61850 v1.3. It is a NULL pointer dereference in Ethernet_sendPacket in ethernet_bsd.c.

Attacker Value

Unknown

CVE-2018-19093

Disclosure Date: November 07, 2018 (last updated November 08, 2023)

An issue has been found in libIEC61850 v1.3. It is a SEGV in ControlObjectClient_setCommandTerminationHandler in client/client_control.c. NOTE: the software maintainer disputes this because it requires incorrect usage of the client_example_control program

Attacker Value

Unknown

CVE-2018-18957

Disclosure Date: November 05, 2018 (last updated November 27, 2024)

An issue has been found in libIEC61850 v1.3. It is a stack-based buffer overflow in prepareGooseBuffer in goose/goose_publisher.c.

12 Total Results

Displaying 1-10 of 12

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Quick Cookie Notification