Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CVE-2020-13556: Out-of-bounds write in OpENer EtherNet/IP stack #77

Open
senier opened this issue Apr 26, 2021 · 0 comments
Open

CVE-2020-13556: Out-of-bounds write in OpENer EtherNet/IP stack #77

senier opened this issue Apr 26, 2021 · 0 comments
Labels
OSS Out-of-Bounds Write

Comments

@senier
Copy link
Member

senier commented Apr 26, 2021

Description

An out-of-bounds write vulnerability exists in the Ethernet/IP server functionality of EIP Stack Group OpENer 2.3 and development commit 8c73bf3. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability.

Root cause

Out-of-bounds write.

Software

Name

EIP Stack Group OpENer

Versions affected

2.3 - 8c73bf3

Fix

EIPStackGroup/OpENer@8c73bf3

Exploit

Links
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
OSS Out-of-Bounds Write
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@senier