Vulnerabilities > CVE-2014-5429 - Resource Management Errors vulnerability in Elipse E3, Power and Scada

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

elipse

CWE-399

NVD

Published: 2014-12-06

Updated: 2014-12-08

Summary

DNP Master Driver 3.02 and earlier in Elipse SCADA 2.29 build 141 and earlier, E3 1.0 through 4.6, and Elipse Power 1.0 through 4.6 allows remote attackers to cause a denial of service (CPU consumption) via malformed packets.

Vulnerable Configurations

Part	Description	Count
Application	Elipse Elipse Scada 2.29 Elipse Power 4.6 Elipse E3 3.2 Elipse E3 4.5 Elipse E3 4.6	5

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://ics-cert.us-cert.gov/advisories/ICSA-14-303-02