CVE-2014-8652

Name of the Vulnerable Software and Affected Versions Elipse E3 versions 3.x and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash and potentially a plant outage. This can be achieved by sending a rapid series of HTTP requests to the "index.html" endpoint on TCP port 1681.

Recommendations For Elipse E3 versions 3.x and earlier, consider restricting access to the "index.html" endpoint on TCP port 1681 to minimize the risk of exploitation. As a temporary workaround, limiting the rate of HTTP requests to this endpoint may also help mitigate the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.