The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY and iFIX, allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2013-11-21 17:55
Updated : 2013-11-22 05:35
NVD link : CVE-2013-2811
Mitre link : CVE-2013-2811
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
ge
- intelligent_platforms_proficy_hmi\/scada_ifix
- intelligent_platforms_proficy_hmi\/scada_cimplicity
- intelligent_platforms_proficy_dnp3_i\/o_driver
catapultsoftware
- catapult_dnp3_i\/o_driver