Vulnerability in N/a
CVE-2019-7232
The ABB IDAL HTTP server is vulnerable to a buffer overflow when a long Host header is sent in a web request. The Host header value overflows a buffer and overwrites a Structured Exception Handler (SEH) address. An unauthenticated attacker…
EPSS: 0.521 (98.8th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- www.darkmatter.ae/xen1thlabs/published-advisories/ (x_refsource_MISC)
- 20190624 XL-19-011 - ABB IDAL HTTP Server Stack-Based Buffer Overflow Vulnerability (mailing-list, x_refsource_FULLDISC, x_refsource_MISC)
- search.abb.com/library/Download.aspx (x_refsource_CONFIRM)
- packetstormsecurity.com/files/153403/ABB-IDAL-HTTP-Server-Stack-Based-Buffer-Ov… (x_refsource_MISC)
- 108886 (vdb-entry, x_refsource_BID)