CVE-2015-7937
published 2015-12-21CVE-2015-7937: Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute…
PriorityP267critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
7.35%
93.6th percentile
Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP Basic Authentication data.
Detection & IOCsextracted from sources · hover to see the quote
- →Exploit is delivered via a long password field in HTTP Basic Authentication headers sent to the GoAhead Web Server on affected Modicon M340 devices; monitor for abnormally long Authorization: Basic header values on port 80. ↗
- →Low-skill remote exploitation is possible with no authentication required (CVSS PR:N, UI:N); any unauthenticated HTTP request with an oversized Basic Auth password to port 80 on affected PLCs should be treated as a high-confidence attack indicator. ↗
- ·No known public exploits exist for this CVE at time of advisory publication; detections should focus on anomalous HTTP Basic Auth traffic rather than known exploit signatures. ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Schneider Electric Modicon M340 Buffer Overflow Vulnerability
cisa_ics·2018-08-27
Schneider Electric Modicon M340 Buffer Overflow Vulnerability
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Schneider Electric Modicon M340 Buffer Overflow Vulnerability
Last RevisedAugust 27, 2018
Alert CodeICSA-15-351-01
## OVERVIEW
David Atch of CyberX has identified a buffer overflow vulnerability in Schneider Electric’s Modicon M340 PLC product line. Schneider Electric has produced a new firmware patch to mitigate this vulnerability.
This vulnerability could be exploited remotely.
## AFFECTED PRODUCTS
Schneider Electric reports that the vulnerability affects the following Modicon M340 PLC products:
- BMXNOC0401,
- BMXNOE0100,
- BMXNOE0100H,
- BMXNOE0110,
- BMXNOE0110H,
-
GHSA
GHSA-8wr7-595h-8jxh: Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execu
ghsa_unreviewed·2022-05-17
CVE-2015-7937 [HIGH] CWE-119 GHSA-8wr7-595h-8jxh: Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execu
Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP Basic Authentication data.
No detection rules found.
No public exploits indexed.
arXiv
The Global State of Security in Industrial Control Systems: An Empirical Analysis of Vulnerabilities around the World
arxiv_fulltext·2021-11-27
The Global State of Security in Industrial Control Systems: An Empirical Analysis of Vulnerabilities around the World
The Global State of Security in Industrial Control Systems: An Empirical Analysis of Vulnerabilities around the World
Simon Daniel Duque Anton,
Daniel Fraunholz,
Daniel Krohmer,
Daniel Reti,
Daniel Schneider,
and Hans Dieter Schotten
This is a pre-print of a paper published in the IEEE Internet of Things Journal.
Please cite as: SD Duque Anton, D Fraunholz, D Krohmer, D Reti, D Schneider, and HD Schotten: The Global State of Security in Industrial Control Systems: An Empirical Analysis of Vulnerabilites around the World, IEEE Internet of Things Journal, May 2021
S. D. Duque Anton was with the German Research Center for Artificial Intelligence. He is now with the comlet Verteilte Systeme GmbH and with the University of Kaiserslautern.
D. Reti, D. Schneider and H. D. Schotten are with the G
Bugzilla
CVE-2014-7937 chromium-browser: use-after-free in FFmpeg
bugzilla·2015-01-23·CVSS 7.5
CVE-2014-7937 [HIGH] CVE-2014-7937 chromium-browser: use-after-free in FFmpeg
CVE-2014-7937 chromium-browser: use-after-free in FFmpeg
An unspecified use-after-free flaw was found in the FFmpeg component of the Chromium browser.
External References:
http://googlechromereleases.blogspot.com/2015/01/stable-update.html
Discussion:
This issue has been addressed in the following products:
Supplementary for Red Hat Enterprise Linux 6
Via RHSA-2015:0093 https://rhn.redhat.com/errata/RHSA-2015-0093.html
http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-344-01http://www.securityfocus.com/bid/79622https://ics-cert.us-cert.gov/advisories/ICSA-15-351-01http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-344-01http://www.securityfocus.com/bid/79622https://ics-cert.us-cert.gov/advisories/ICSA-15-351-01
2015-12-21
Published