Published: 24/06/2019 Updated: 30/11/2022

CVSS v2 Base Score: 2.7 | Impact Score: 2.9 | Exploitability Score: 5.1

CVSS v3 Base Score: 5.7 | Impact Score: 3.6 | Exploitability Score: 2.1

VMScore: 240

Vector: AV:A/AC:L/Au:S/C:N/I:N/A:P

Subscribe to Pb610 Panel Builder 600 Firmware

The ABB IDAL FTP server is vulnerable to a buffer overflow when a long string is sent by an authenticated attacker. This overflow is handled, but terminates the process. An authenticated attacker can send a FTP command string of 472 bytes or more to overflow a buffer, causing an exception that terminates the server.

Vulnerable Product	Search on Vulmon	Subscribe to Product
abb pb610_panel_builder_600_firmware

The IDAL FTP server is vulnerable to a buffer overflow where a large string is sent by an authenticated attacker that causes a buffer overflow This overflow is handled, but terminates the process An authenticated attacker can send a FTP command string of 472 bytes or more to overflow a buffer causing an exception that terminates the server An un ...

CWE-119 https://search.abb.com/library/Download.aspx?DocumentID=3ADR010377&LanguageCode=en&DocumentPartId=&Action=Launch https://www.darkmatter.ae/xen1thlabs/published-advisories/http://seclists.org/fulldisclosure/2019/Jun/35 http://packetstormsecurity.com/files/153395/ABB-IDAL-FTP-Server-Buffer-Overflow.html http://www.securityfocus.com/bid/108886 https://nvd.nist.gov https://packetstormsecurity.com/files/153395/ABB-IDAL-FTP-Server-Buffer-Overflow.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-7231

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect