CVE-2019-5075
N/A
N/A
Summary
An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a stack buffer overflow in the sub-process getcouplerdetails, resulting in code execution. An attacker can send unauthenticated packets to trigger this vulnerability.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | WAGO PFC200 | Firmware version 03.01.07(13) | affected |
| n/a | WAGO PFC200 | Firmware version 03.00.39(12) | affected |
| n/a | WAGO PFC100 | Firmware version 03.00.39(12) | affected |
Weaknesses
- stack buffer overflow
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.