Vulnerabilities > CVE-2012-5048 - Resource Management Errors vulnerability in Optimalog Optima PLC

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

optimalog

CWE-399

exploit available

NVD

Published: 2012-09-28

Updated: 2013-04-11

Summary

APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted packet.

Vulnerable Configurations

Part	Description	Count
Application	Optimalog Optimalog Optima PLC 1.4.9 Optimalog Optima PLC 1.4.10 Optimalog Optima PLC 1.5.0 Optimalog Optima PLC 1.5.1 Optimalog Optima PLC *	5

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Exploit-Db

description	optima apiftp server <= 1.5.2.13 - Multiple Vulnerabilities. CVE-2012-5048,CVE-2012-5049. Dos exploit for windows platform
id	EDB-ID:18112
last seen	2016-02-02
modified	2011-11-14
published	2011-11-14
reporter	Luigi Auriemma
source	https://www.exploit-db.com/download/18112/
title	optima apiftp server <= 1.5.2.13 - Multiple Vulnerabilities

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

References