PT-2013-3941 · Red Lion Controls · Sixnet Rtu+1

Published

2013-08-21

Updated

2013-08-23

CVE-2013-2802

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Sixnet UDR versions prior to 2.0 Sixnet RTU firmware versions prior to 4.8

Description The issue allows remote attackers to execute arbitrary code, read, modify, or create files, or obtain file metadata via function opcodes in the universal protocol implementation.

Recommendations For Sixnet UDR versions prior to 2.0, update to version 2.0 or later. For Sixnet RTU firmware versions prior to 4.8, update to version 4.8 or later.

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2013-2802

Affected Products

Sixnet Rtu

Sixnet Udr

PT-2013-3941 · Red Lion Controls · Sixnet Rtu+1

CVE-2013-2802

Weakness Enumeration

Related Identifiers

Affected Products

References · 2