Vulnerabilities > CVE-2019-5184 - Double Free vulnerability in Wago Pfc200 Firmware 03.02.02(14)

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

wago

CWE-415

NVD

Published: 2020-03-23

Updated: 2020-03-25

Summary

An exploitable double free vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC 200. A specially crafted XML cache file written to a specific location on the device can cause a heap pointer to be freed twice, resulting in a denial of service and potentially code execution. An attacker can send a specially crafted packet to trigger the parsing of this cache file.

Vulnerable Configurations

Part	Description	Count
OS	Wago Wago Pfc200 Firmware 03.02.02\(14\)	1
Hardware	Wago Wago Pfc200 -	1

Common Weakness Enumeration (CWE)

CWE-415 - Double Free

Talos

id	TALOS-2019-0965
last seen	2020-03-26
published	2020-03-09
reporter	Talos Intelligence
source	http://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0965
title	WAGO PFC200 iocheckd service "I/O-Check" cache gateway Memory Corruption Vulnerability

References

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0965