Menu

CVE-2018-10244

Software: suricata, v. 4.0.4.
Language: C
Risk: medium / high
Type: buffer overflow/remote

Description: Incorrectly handles the parsing of an EtherNet/IP PUD. A malformed PUD can cause the parsing code to read beyond the allocated data because DecodeENIPPDU in app-layer-enip-commmon.c has an integer overflow during the length check.

Status: published

Customers & Partners

Digital Hub Bonn Techboost Deutsche Börse Bosch GmbH Telekom HTGF Deutsche Cyber-Sicherheitsorganisation Intevation Sopra Steria Deutsche Börse Venture Network Allianz für Cyber-Sicherheit Cyber Security Cluster Bonn