CVE-2015-5626

Name of the Vulnerable Software and Affected Versions: Yokogawa CENTUM CS 1000 versions R3.08.70 and earlier Yokogawa CENTUM CS 3000 versions R3.09.50 and earlier Yokogawa CENTUM CS 3000 Entry versions R3.09.50 and earlier Yokogawa CENTUM VP versions R5.04.20 and earlier Yokogawa CENTUM VP Entry versions R5.04.20 and earlier Yokogawa ProSafe-RS versions R3.02.10 and earlier Yokogawa Exaopc versions R3.72.00 and earlier Yokogawa Exaquantum versions R2.85.00 and earlier Yokogawa Exaquantum/Batch versions R2.50.30 and earlier Yokogawa Exapilot versions R3.96.10 and earlier Yokogawa Exaplog versions R3.40.00 and earlier Yokogawa Exasmoc versions R4.03.20 and earlier Yokogawa Exarqe versions R4.03.20 and earlier Yokogawa Field Wireless Device OPC Server versions R2.01.02 and earlier Yokogawa PRM versions R3.12.00 and earlier Yokogawa STARDOM VDS versions R7.30.01 and earlier Yokogawa STARDOM OPC Server for Windows versions R3.40 and earlier Yokogawa FAST/TOOLS versions R10.01 and earlier Yokogawa B/M9000CS versions R5.05.01 and earlier Yokogawa B/M9000 VP versions R7.03.04 and earlier Yokogawa FieldMate versions R1.01 or R1.02

Description: The issue is related to a stack-based buffer overflow that allows remote attackers to cause a denial of service, resulting in a network-communications outage, via a crafted packet. This can be exploited by a remote attacker to disrupt service.

Recommendations: For Yokogawa CENTUM CS 1000 versions R3.08.70 and earlier, update to a version later than R3.08.70. For Yokogawa CENTUM CS 3000 versions R3.09.50 and earlier, update to a version later than R3.09.50. For Yokogawa CENTUM CS 3000 Entry versions R3.09.50 and earlier, update to a version later than R3.09.50. For Yokogawa CENTUM VP versions R5.04.20 and earlier, update to a version later than R5.04.20. For Yokogawa CENTUM VP Entry versions R5.04.20 and earlier, update to a version later than R5.04.20. For Yokogawa ProSafe-RS versions R3.02.10 and earlier, update to a version later than R3.02.10. For Yokogawa Exaopc versions R3.72.00 and earlier, update to a version later than R3.72.00. For Yokogawa Exaquantum versions R2.85.00 and earlier, update to a version later than R2.85.00. For Yokogawa Exaquantum/Batch versions R2.50.30 and earlier, update to a version later than R2.50.30. For Yokogawa Exapilot versions R3.96.10 and earlier, update to a version later than R3.96.10. For Yokogawa Exaplog versions R3.40.00 and earlier, update to a version later than R3.40.00. For Yokogawa Exasmoc versions R4.03.20 and earlier, update to a version later than R4.03.20. For Yokogawa Exarqe versions R4.03.20 and earlier, update to a version later than R4.03.20. For Yokogawa Field Wireless Device OPC Server versions R2.01.02 and earlier, update to a version later than R2.01.02. For Yokogawa PRM versions R3.12.00 and earlier, update to a version later than R3.12.00. For Yokogawa STARDOM VDS versions R7.30.01 and earlier, update to a version later than R7.30.01. For Yokogawa STARDOM OPC Server for Windows versions R3.40 and earlier, update to a version later than R3.40. For Yokogawa FAST/TOOLS versions R10.01 and earlier, update to a version later than R10.01. For Yokogawa B/M9000CS versions R5.05.01 and earlier, update to a version later than R5.05.01. For Yokogawa B/M9000 VP versions R7.03.04 and earlier, update to a version later than R7.03.04. For Yokogawa FieldMate versions R1.01 or R1.02, update to a version later than R1.02. At the moment, there is no information about a newer version that contains a fix for this vulnerability.