Main Vulnerability Database Vulnerabilities #VU11920

Buffer overflow in Triconex Tricon 3008 - CVE-2018-8872

Published: April 17, 2018 / Updated: April 19, 2018

Vulnerability identifier: #VU11920

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2018-8872

CWE-ID: CWE-119

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Schneider Electric

Affected software:
Triconex Tricon 3008

Detailed vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to boundary error when the system call reads directly from memory addresses within the control program area without any verification. A remote unauthenticated attacker can trigger memory corruption, copy any data within memory.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

How to mitigate CVE-2018-8872

Update to the latest version.

Sources

https://ics-cert.us-cert.gov/advisories/ICSA-18-107-02

Buffer overflow in Triconex Tricon 3008 - CVE-2018-8872

Detailed vulnerability description

How to mitigate CVE-2018-8872

Sources

Please verify you're human