mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
1.2 KiB
1.2 KiB
CVE-2019-12480
Description
BACnet Protocol Stack through 0.8.6 has a segmentation fault leading to denial of service in BACnet APDU Layer because a malformed DCC in AtomicWriteFile, AtomicReadFile and DeviceCommunicationControl services. An unauthenticated remote attacker could cause a denial of service (bacserv daemon crash) because there is an invalid read in bacdcode.c during parsing of alarm tag numbers.
POC
Reference
- http://packetstormsecurity.com/files/153716/BACnet-Stack-0.8.6-Denial-Of-Service.html
- https://1modm.github.io/CVE-2019-12480.html
Github
- https://github.com/DSKPutra/All-About-OT-Security
- https://github.com/Orange-Cyberdefense/awesome-industrial-protocols
- https://github.com/biero-el-corridor/OT_ICS_ressource_list
- https://github.com/neutrinoguy/awesome-ics-writeups
- https://github.com/paulveillard/cybersecurity-OT
- https://github.com/whoami-chmod777/Awesome-Industrial-Protocols