CVE-2011-3486 - Buffer Errors vulnerability in Beckhoff Twincat

Publication

2011-09-16

Last modification

2017-08-29

Summary

Beckhoff TwinCAT 2.11.0.2004 and earlier allows remote attackers to cause a denial of service via a crafted request to UDP port 48899, which triggers an out-of-bounds read.

Description

TwinCAT is prone to a denial-of-service vulnerability.Attackers can exploit this issue to crash the application, denying service to legitimate users. TwinCAT 2.11 R2 Build 2032 is vulnerable. Other versions may also be affected.

Solution

The vendor released an update. Please contact the vendor for more information on how to obtain and apply this update.

Exploit

Exploit code is available. Please see the references for information.

Classification

CWE-119 - Buffer Errors

Risk level (CVSS AV:N/AC:L/Au:N/C:N/I:N/A:P)

Medium

5.0

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

Vendor Product Versions
Beckhoff Twincat  2.10 , 2.8 , 2.11.0.2004 , 2.9 , 2.7