CVE-2018-19185
12.11.2018, 05:29
An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoder_encodeOctetString in mms/asn1/ber_encoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector.Enginsight
| Vendor | Product | Version |
|---|---|---|
| mz-automation | libiec61850 | 1.3 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References