Threat Encyclopedia

Improper Handling of Length Parameter for Mitsubishi Electric CPU Module Logging Configuration Tool

description-logoDescription

Improper handling of length parameter inconsistency vulnerability in Mitsubishi Electronic CPU Module Logging Configuration Tool version 1.112R and earlier allows a remote unauthenticated attacker to cause a DoS condition of the software products, and possibly to execute a malicious program on the personal computer running the software products although it has not been reproduced, by spoofing MELSEC, GOT or FREQROL and returning crafted reply packets.

affected-products-logoAffected Products

CPU Module Logging Configuration Tool