Improper Handling of Length Parameter Inconsistency in GX Works2

#VU59224 Improper Handling of Length Parameter Inconsistency in GX Works2

Published: 2022-01-05

Vulnerability identifier: #VU59224

Vulnerability risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-20608

CWE-ID: CWE-130

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
GX Works2
Client/Desktop applications / Software for system administration

Vendor: Mitsubishi Electric

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper handlingof length field that is inconsistent with the actual length of the associated data. A remote attacker can send a specially crafted packet to the PLC and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

GX Works2: 1.606G

External links
http://us-cert.cisa.gov/ics/advisories/icsa-21-350-04
http://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-020_en.pdf
http://jvn.jp/vu/JVNVU93019896/index.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Denial of service in Mitsubishi Electric GX Works2