Fwd: [CIVN-2020-0438] Denial of Service Vulnerability in Cisco Talos Ethernet/IP server

Severity Rating: MEDIUM

Software Affected

OpENer: 2.3

OpENer development commit 8c73bf3

Overview

Vulnerability has been reported in the Ethernet/IP server functionality

which could allow the remote attacker to perform a denial of service (DoS)

attack.

Description

A Vulnerability exists in the Ethernet/IP server functionality of the EIP

Stack Group OpENer 2.3 and development commit 8c73bf3due to insufficient

validation of user-supplied input in the Ethernet/IP server functionality.

An attacker could exploit this vulnerability by sending a specially crafted

request to an affected device.

Successful exploitation of this vulnerability could allow the attacker to

impact operations, leading to a denial of service (DoS) condition.

Solution

Apply appropriate updates as mentioned in:

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1143

Vendor Information

Cisco

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1143

References

Cisco

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1143

CVE Name

CVE-2020-13530

About Cert Advisory

We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.

Fwd: [CIVN-2020-0438] Denial of Service Vulnerability in Cisco Talos Ethernet/IP server

About Cert Advisory

Related Posts

Popular Posts

Facebook

Blog Archive