CVE-2019-5182

Name of the Vulnerable Software and Affected Versions WAGO PFC 200 Firmware version 03.02.02(14)

Description A stack buffer overflow issue exists in the iocheckd service, specifically in the 'I/O-Check' functionality. This can be triggered by sending a specially crafted packet, causing the parsing of a cache file. The sprintf() function overflows the destination buffer sp+0x440 when type values exceed a certain length. For example, a type value of length 0x3d9 can cause the service to crash.

Recommendations For WAGO PFC 200 Firmware version 03.02.02(14), consider disabling the iocheckd service or restricting access to it until a patch is available. As a temporary workaround, avoid using type values greater than 1024-len('/etc/config-tools/config interfaces interface=X1 state=enabled config-type=') in length to prevent the buffer overflow.