CVE-2015-3977

Sažetak

Buffer overflow in Schneider Electric IMT25 Magnetic Flow DTM before 1.500.004 for the HART Protocol allows remote authenticated users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted HART reply.

Reference

http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-215-01
https://ics-cert.us-cert.gov/advisories/ICSA-15-223-01

CVSS

Base:	7.7
Impact:	10.0
Exploitability:	5.1

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:A/AC:L/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

16-11-2015 - 19:26

Objavljeno

15-11-2015 - 03:59