Vulnerability in 3ssoftware Codesys
CVE-2011-5009
The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service (NULL pointer dereference) via (1) a crafted Content-Length in an HTTP POST or (2) an invalid HTTP reques…
EPSS: 0.246 (96.2th percentile) — read the EPSS interpretation.
Affected products
- 3ssoftware Codesys — versions 3.4
- N/a — versions n/a
References
- cve@mitre.org (US Government Resource, Exploit, x_refsource_MISC)
- 20111129 Vulnerabilities in 3S CoDeSys 3.4 SP4 Patch 2 (mailing-list, x_refsource_BUGTRAQ)
- 47018 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- cve@mitre.org (x_refsource_MISC)
- 77388 (x_refsource_OSVDB, vdb-entry)
- codesys-cmpwebserver-dos(71533) (vdb-entry, x_refsource_XF)
- 77389 (x_refsource_OSVDB, vdb-entry)