Buffer Overflow Vulnerability in Bro Analyzer/Protocol/DNP3

Buffer Overflow Vulnerability in Bro Analyzer/Protocol/DNP3

CVE-2015-1522 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

analyzer/protocol/dnp3/DNP3.cc in Bro before 2.3.2 does not reject certain non-zero values of a packet length, which allows remote attackers to cause a denial of service (buffer overflow or buffer over-read) via a crafted DNP3 packet.

Learn more about our Web Application Penetration Testing UK.