Test Kennung:	1.3.6.1.4.1.25623.1.0.106630
Kategorie:	Denial of Service
Titel:	Schneider Electric Modicon M340 DoS Vulnerability
Zusammenfassung:	Schneider Electric Modicon M340 devices are prone to a denial of service; vulnerability.
Beschreibung:	Summary: Schneider Electric Modicon M340 devices are prone to a denial of service vulnerability. Vulnerability Insight: During communication between the operator and PLC using function code 0x5A of Modbus, it is possible to send a specially crafted set of packets to the PLC and cause it to freeze, requiring the operator to physically press the reset button of the PLC in order to recover. Vulnerability Impact: Successful exploitation of this vulnerability may render the device unresponsive requiring a physical reset of the PLC. Affected Software/OS: Schneider Electric BMXNOC0401, BMXNOE0100, BMXNOE0110, BMXNOE0110H, BMXNOR0200H, BMXP341000, BMXP342000, BMXP3420102, BMXP3420102CL, BMXP342020, BMXP342020H, BMXP342030, BMXP3420302, BMXP3420302H and BMXP342030H prior to firmware version 2.9. Solution: Upgrade to firmware version 2.9 or later. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6017 BugTraq ID: 96414 http://www.securityfocus.com/bid/96414 https://ics-cert.us-cert.gov/advisories/ICSA-17-054-03
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.