PT-2018-6515 · Opc Foundation · Opc Foundation Local Discovery Server

Published

2018-06-13

Updated

2018-08-08

CVE-2017-17443

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: OPC Foundation Local Discovery Server (LDS) version 1.03.370

Description: The issue allows attackers to trigger a crash by placing invalid data into the configuration file, requiring an attacker to have access to the file system where the configuration file is stored. If the configuration file is altered, the LDS will be unavailable until it is repaired.

Recommendations: For version 1.03.370, apply the required security update to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2017-17443

Affected Products

Opc Foundation Local Discovery Server

PT-2018-6515 · Opc Foundation · Opc Foundation Local Discovery Server

CVE-2017-17443

Weakness Enumeration

Related Identifiers

Affected Products

References · 3