Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-9203

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2014-9203
Last Modified 09 Feb 2015 02:26:44
Published 07 Feb 2015 10:59:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-9203

Summary

Buffer overflow in the Field Device Tool (FDT) Frame application in the HART Device Type Manager (DTM) library, as used in MACTek Bullet DTM 1.00.0, GE Vector DTM 1.00.0, GE SVi1000 Positioner DTM 1.00.0, GE SVI II AP Positioner DTM 2.00.1, and GE 12400 Level Transmitter DTM 1.00.0, allows remote attackers to cause a denial of service (DTM outage) via crafted packets.

Vulnerable Systems

Application

  • 12400 Level Transmitter Device Type Manager 1.00.0

  • Mactek Bullet Device Type Manager 1.00.0

  • Svi Ii Ap Positioner Device Type Manager 2.00.1

  • Vector Device Type Manager 1.00.0


References

MISC - https://ics-cert.us-cert.gov/advisories/ICSA-15-036-01

CONFIRM - http://www.geoilandgas.com/securityadvisory


Last Updated: 27 May 2016 11:07:43