CVE-2015-1521
24.04.2017, 06:59
analyzer/protocol/dnp3/DNP3.cc in Bro before 2.3.2 does not properly handle zero values of a packet length, which allows remote attackers to cause a denial of service (buffer overflow or buffer over-read if NDEBUG; otherwise assertion failure) via a crafted DNP3 packet.Enginsight
| Vendor | Product | Version |
|---|---|---|
| bro | bro | 𝑥 ≤ 2.3.1 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Common Weakness Enumeration