Lucene search

JpcertCVE-2011-3996

HistoryNov 03, 2011 - 5:55 p.m.

CVE-2011-3996

2011-11-0317:55:01

CWE-399

jpcert

web.nvd.nist.gov

cve-2011-3996

csworks

denial of service

nvd

crafted tcp packets

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

High

EPSS

0.033

Percentile

91.3%

JSON

The LiveData Service in CSWorks before 2.0.4115.1 allows remote attackers to cause a denial of service (service crash) via crafted TCP packets.

Affected configurations

Nvd

Node

controlsystemworkscsworksRange≤2.0.4115.0

controlsystemworkscsworksMatch1.0.601.0

controlsystemworkscsworksMatch1.0.612.0

controlsystemworkscsworksMatch1.0.623.0

controlsystemworkscsworksMatch1.0.720.0

controlsystemworkscsworksMatch1.0.801.0

controlsystemworkscsworksMatch1.0.813.0

controlsystemworkscsworksMatch1.0.901.0

controlsystemworkscsworksMatch1.0.3540.0

controlsystemworkscsworksMatch1.0.3560.0

controlsystemworkscsworksMatch1.0.3580.0

controlsystemworkscsworksMatch1.1.3600.0

controlsystemworkscsworksMatch1.1.3674.0

controlsystemworkscsworksMatch1.1.3700.0

controlsystemworkscsworksMatch1.2.3730.0

controlsystemworkscsworksMatch1.2.3800.0

controlsystemworkscsworksMatch1.4.3820.0

controlsystemworkscsworksMatch1.4.3830.0

controlsystemworkscsworksMatch1.4.3850.0

controlsystemworkscsworksMatch1.4.3860.0

controlsystemworkscsworksMatch1.4.3880.0

controlsystemworkscsworksMatch1.4.3900.0

controlsystemworkscsworksMatch1.4.4000.0

controlsystemworkscsworksMatch1.7.4050.0

controlsystemworkscsworksMatch1.7.5000.0

VendorProductVersionCPE
controlsystemworkscsworks*cpe:2.3:a:controlsystemworks:csworks:*:*:*:*:*:*:*:*
controlsystemworkscsworks1.0.601.0cpe:2.3:a:controlsystemworks:csworks:1.0.601.0:*:*:*:*:*:*:*
controlsystemworkscsworks1.0.612.0cpe:2.3:a:controlsystemworks:csworks:1.0.612.0:*:*:*:*:*:*:*
controlsystemworkscsworks1.0.623.0cpe:2.3:a:controlsystemworks:csworks:1.0.623.0:*:*:*:*:*:*:*
controlsystemworkscsworks1.0.720.0cpe:2.3:a:controlsystemworks:csworks:1.0.720.0:*:*:*:*:*:*:*
controlsystemworkscsworks1.0.801.0cpe:2.3:a:controlsystemworks:csworks:1.0.801.0:*:*:*:*:*:*:*
controlsystemworkscsworks1.0.813.0cpe:2.3:a:controlsystemworks:csworks:1.0.813.0:*:*:*:*:*:*:*
controlsystemworkscsworks1.0.901.0cpe:2.3:a:controlsystemworks:csworks:1.0.901.0:*:*:*:*:*:*:*
controlsystemworkscsworks1.0.3540.0cpe:2.3:a:controlsystemworks:csworks:1.0.3540.0:*:*:*:*:*:*:*
controlsystemworkscsworks1.0.3560.0cpe:2.3:a:controlsystemworks:csworks:1.0.3560.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
controlsystemworks	csworks	*	cpe:2.3:a:controlsystemworks:csworks::::::::
controlsystemworks	csworks	1.0.601.0	cpe:2.3:a:controlsystemworks:csworks:1.0.601.0:::::::*
controlsystemworks	csworks	1.0.612.0	cpe:2.3:a:controlsystemworks:csworks:1.0.612.0:::::::*
controlsystemworks	csworks	1.0.623.0	cpe:2.3:a:controlsystemworks:csworks:1.0.623.0:::::::*
controlsystemworks	csworks	1.0.720.0	cpe:2.3:a:controlsystemworks:csworks:1.0.720.0:::::::*
controlsystemworks	csworks	1.0.801.0	cpe:2.3:a:controlsystemworks:csworks:1.0.801.0:::::::*
controlsystemworks	csworks	1.0.813.0	cpe:2.3:a:controlsystemworks:csworks:1.0.813.0:::::::*
controlsystemworks	csworks	1.0.901.0	cpe:2.3:a:controlsystemworks:csworks:1.0.901.0:::::::*
controlsystemworks	csworks	1.0.3540.0	cpe:2.3:a:controlsystemworks:csworks:1.0.3540.0:::::::*
controlsystemworks	csworks	1.0.3560.0	cpe:2.3:a:controlsystemworks:csworks:1.0.3560.0:::::::*

Rows per page:

1-10 of 251

References

jvn.jp/en/jp/JVN98649286/index.html

jvndb.jvn.jp/jvndb/JVNDB-2011-000095

secunia.com/advisories/46625

www.controlsystemworks.com/blogengine/post/CSWorks-2041151-security-release.aspx

www.controlsystemworks.com/ProductHistory.aspx

www.securityfocus.com/bid/50458

exchange.xforce.ibmcloud.com/vulnerabilities/71079

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

High

EPSS

0.033

Percentile

91.3%

JSON

Related for CVE-2011-3996