Denial of Service Vulnerability in Bro Analyzer/Protocol/DNP3

Denial of Service Vulnerability in Bro Analyzer/Protocol/DNP3

CVE-2015-1521 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

analyzer/protocol/dnp3/DNP3.cc in Bro before 2.3.2 does not properly handle zero values of a packet length, which allows remote attackers to cause a denial of service (buffer overflow or buffer over-read if NDEBUG; otherwise assertion failure) via a crafted DNP3 packet.

Learn more about our Web Application Penetration Testing UK.