Release DateJan 06, 2012 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt against a Buffer Overflow vulnerability in CoDeSys SCADA Webserver.The vulnerability is caused by an error when the vulnerable software handles a overly long URI. It allows a remote attacker to execute arbitrary code via sending a crafted URI. |
Affected ProductsCoDeSys Scada v2.3 |
Recommended ActionsCurrently we are not aware of any vendor supplied patch for this issue. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-5009 |
Reference/shttp://aluigi.altervista.org/adv/codesys_1-adv.txthttp://www.exploit-db.com/exploits/18240/ |
