Sonicwall Signatures


Go to All Categories list.

  Schneider Electric Modicon M580 UMAS Release Reservation DOS

Category: SCADA-ATTACKS      

An exploitable denial-of-service vulnerability exists in the UMAS Release PLC Reservation function of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to invalidate a session without verifying the authenticity of the sender, resulting in the disconnection of legitimate devices. An attacker can send unauthenticated commands to trigger this vulnerability.

Relevant Information