MidnightBSD

Advisories for ioserver

CVE-2013-2783 HIGH

The DNP3 driver in IOServer drivers 1.0.19.0 allows remote attackers to cause a denial of service (infinite loop) or obtain unspecified control via crafted data to TCP port 20000.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
ioserver ioserver 1.0.19.0
CVE-2013-2790 HIGH

The master-station DNP3 driver before driver19.exe, and Beta2041.exe, in IOServer allows remote attackers to cause a denial of service (infinite loop) via crafted DNP3 packets to TCP port 20000.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
ioserver ioserver -
CVE-2014-0777 HIGH

The Modbus slave/outstation driver in the OPC Drivers 1.0.20 and earlier in IOServer OPC Server allows remote attackers to cause a denial of service (out-of-bounds read and daemon crash) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,CWE-119,

Products Affected

Vendor Product Version
ioserver ioserver_opc_server -
ioserver opc_drivers *
CVE-2014-5425 MEDIUM

IOServer before Beta2112.exe allows remote attackers to cause a denial of service (out-of-bounds read and master entry consumption) via a null DNP3 header.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
ioserver ioserver *