PT-2015-3453 · Embedthis+1 · Goahead Web Server+2

Published

2015-09-03

Updated

2016-12-22

CVE-2015-6465

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Moxa EDS-405A and Moxa EDS-408A switches with firmware prior to 3.6

Description The issue is related to an uncontrolled resource consumption in the GoAhead web server of the affected switches. This can be exploited by a remote attacker to cause a denial of service, potentially leading to a reboot of the device.

Recommendations For Moxa EDS-405A and Moxa EDS-408A switches with firmware prior to 3.6, update the firmware to version 3.6 or later to resolve the issue.

Fix

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

BDU:2024-05173

CVE-2015-6465

Affected Products

Goahead Web Server

Moxa Eds-405A

Moxa Eds-408A

PT-2015-3453 · Embedthis+1 · Goahead Web Server+2

CVE-2015-6465

Weakness Enumeration

Related Identifiers

Affected Products

References · 6