Vulnerabilities > CVE-2014-5426 - Code vulnerability in Matrikonopc Dnp3 OPC Server 1.2.3

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

matrikonopc

CWE-17

NVD

Published: 2014-11-27

Updated: 2014-11-28

Summary

MatrikonOPC OPC Server for DNP3 1.2.3 and earlier allows remote attackers to cause a denial of service (unhandled exception and DNP3 process crash) via a crafted message.

Vulnerable Configurations

Part	Description	Count
Application	Matrikonopc Matrikonopc Dnp3 OPC Server 1.2.3	1

Common Weakness Enumeration (CWE)

CWE-17 - Code

References

http://www.opcsupport.com/link/portal/4164/4590/Article/3004/SECURITY-NOTIFICATION-OPC-Server-for-SCADA-DNP3-SN-2014-10-14-01
https://ics-cert.us-cert.gov/advisories/ICSA-14-329-01