Vulnerabilities > CVE-2014-9191 - Resource Management Errors vulnerability in Codewrights Hart Device Type Manager 1.0.44

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

low complexity

codewrights

CWE-399

NVD

Published: 2015-01-10

Updated: 2016-12-08

Summary

The CodeWrights HART Device Type Manager (DTM) library in Emerson HART DTM before 1.4.181 allows physically proximate attackers to cause a denial of service (DTM outage and FDT Frame application hang) by transmitting crafted response packets on the 4-20 mA current loop.

Vulnerable Configurations

Part	Description	Count
Application	Codewrights Codewrights Hart Device Type Manager 1.0.44	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://www.securityfocus.com/bid/71952
http://www2.emersonprocess.com/siteadmincenter/PM%20Central%20Web%20Documents/EMR%20EPM14001-1.pdf
https://ics-cert.us-cert.gov/advisories/ICSA-15-008-01A
https://ics-cert.us-cert.gov/advisories/ICSA-15-237-01