SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  CODESYS CODESYS GatewayService Memory Corruption 1

Category: SCADA-ATTACKS      

An exploitable memory corruption vulnerability exists in the Name Service Client functionality of 3S-Smart Software Solutions CODESYS GatewayService 3.5.13.20. A specially crafted packet can cause a large memcpy, resulting in an access violation and termination of the process. An attacker can send a packet to a device running the GatewayService.exe to trigger this vulnerability.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5105


Relevant Information