Denial of Service Vulnerability in 3S CoDeSys 3.4 SP4 Patch 2 Control Service

Denial of Service Vulnerability in 3S CoDeSys 3.4 SP4 Patch 2 Control Service

CVE-2011-5009 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service (NULL pointer dereference) via (1) a crafted Content-Length in an HTTP POST or (2) an invalid HTTP request method.

Learn more about our Web App Pen Testing.