Vulnerabilities > CVE-2014-8652 - Configuration vulnerability in Elipse E3 3.2

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

elipse

CWE-16

exploit available

NVD

Published: 2014-11-10

Updated: 2014-11-14

Summary

Elipse E3 3.x and earlier allows remote attackers to cause a denial of service (application crash and plant outage) via a rapid series of HTTP requests to index.html on TCP port 1681.

Vulnerable Configurations

Part	Description	Count
Application	Elipse Elipse E3 3.2	1

Common Weakness Enumeration (CWE)

CWE-16 - Configuration

Exploit-Db

description	Elipse E3 - HTTP Denial of Service. CVE-2014-8652. Dos exploit for windows platform
id	EDB-ID:35379
last seen	2016-02-04
modified	2014-11-26
published	2014-11-26
reporter	firebitsbr
source	https://www.exploit-db.com/download/35379/
title	Elipse E3 - HTTP Denial of Service

References

http://seclists.org/fulldisclosure/2014/Jul/69
http://firebitsbr.wordpress.com/2014/07/16/vsla-security-advisory-fire-scada-dos-2013-001-http-dos-requests-flooding-crash-device-vulnerabilities-elipse-e3-scada-plc/