CVE-2013-2793

Published Sep 9, 2013

Last updated 11 years ago

CVSS info 7.8

Overview

Description: Triangle MicroWorks SCADA Data Gateway 2.50.0309 through 3.00.0616, DNP3 .NET Protocol components 3.06.0.171 through 3.15.0.369, and DNP3 C libraries 3.06.0000 through 3.15.0000 allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.
Source: ics-cert@hq.dhs.gov
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.06.0.171:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FFDA2B53-1513-4DDF-B325-025FEFA5E16B"
          },
          {
            "criteria": "cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.15.0.369:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "045F45E6-DB41-4D65-968B-CD04596004D0"
          },
          {
            "criteria": "cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.06.0000:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7DECC05A-BB49-47AD-841A-0D16582C3BD0"
          },
          {
            "criteria": "cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.15.0000:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AEB98E06-B56D-4168-A94C-8D7FCBA58FEF"
          },
          {
            "criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.50:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2626C47-B68A-4A21-B5A2-9D64A28A7120"
          },
          {
            "criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.50.0309:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69D2B52D-B324-4115-A3BB-51E3BF97758B"
          },
          {
            "criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:3.00.0616:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C679459-44C7-454C-9894-87ABE1F710F2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References