CVE-2013-2781
published 2013-05-23CVE-2013-2781: Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote attackers to cause a denial of service (daemon crash) or…
PriorityP342critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
3.80%
88.7th percentile
Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| 3s-software | codesys_gateway-server | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
3S CODESYS Gateway Use After Free
cisa_ics·2018-08-23
3S CODESYS Gateway Use After Free
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
3S CODESYS Gateway Use After Free
Last RevisedAugust 23, 2018
Alert CodeICSA-13-142-01
OVERVIEW
Independent researcher Nicholas Miles has identified a vulnerability in the 3S CODESYS Gateway application that can result in a denial-of-service (DoS) condition. 3S has produced an update that mitigates this vulnerability. Nicholas Miles has tested this update and validates that it resolves the vulnerability.
Successful exploitation of this vulnerability could cause a DoS condition and may also allow the possibility of remote execution of arbitrary code.
The Gateway-Server is a thi
GHSA
GHSA-g4gg-mp54-wh67: Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2
ghsa_unreviewed·2022-05-17
CVE-2013-2781 [HIGH] GHSA-g4gg-mp54-wh67: Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2
Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.
No detection rules found.
No writeups or analysis indexed.
2013-05-23
Published