mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-12-13 23:37:08 +00:00
65 lines
1.9 KiB
JSON
65 lines
1.9 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "cve-assign@distributedweaknessfiling.org",
|
|
"DATE_ASSIGNED" : "2017-08-22T17:29:33.459114",
|
|
"ID" : "CVE-2017-1000230",
|
|
"REQUESTER" : "martin.tenek@gmail.com",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "Step7 Open Source Ethernet Communication Suite",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "1.4.1"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "Snap7"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "The Snap7 Server version 1.4.1 can be crashed when the ItemCount field of the ReadVar or WriteVar functions of the S7 protocol implementation in Snap7 are provided with unexpected input, thus resulting in denial of service attack."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Null Pointer Exception"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "https://sourceforge.net/p/snap7/discussion/bugfix/thread/2d2d085c/",
|
|
"refsource" : "MISC",
|
|
"url" : "https://sourceforge.net/p/snap7/discussion/bugfix/thread/2d2d085c/"
|
|
}
|
|
]
|
|
}
|
|
}
|