Roche · Elecsys Director Gateway · CVE-2013-2825
**Name of the Vulnerable Software and Affected Versions**
Elecsys Director Gateway devices with kernel 2.6.32.11ael1 and earlier
**Description**
The issue allows remote attackers to cause a denial of service, resulting in CPU consumption and communication outage, via crafted input to the DNP3 service in the Outstation component.
**Recommendations**
For kernel versions 2.6.32.11ael1 and earlier, consider disabling the DNP3 service in the Outstation component as a temporary workaround to minimize the risk of exploitation.