CVE-2012-0929

Name of the Vulnerable Software and Affected Versions Schneider Electric Modicon Quantum PLC (affected versions not specified) Schneider Electric Modicon M340 (affected versions not specified)

Description The issue is caused by multiple buffer overflows in the PLC's software, allowing remote attackers to cause a denial of service. This can be achieved by sending malformed requests to the FTP server or HTTP server. The exploitation of this issue may allow an attacker to cause a denial of service using specially crafted FTP or HTTP requests.

Recommendations For Schneider Electric Modicon Quantum PLC, consider restricting access to the FTP and HTTP servers until a fix is available. For Schneider Electric Modicon M340, as a temporary workaround, consider disabling the FTP and HTTP servers to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.