CVE-2013-2792

Summary

CVE	CVE-2013-2792
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2013-08-09 23:55:00 UTC
Updated	2013-08-12 20:00:00 UTC
Description	Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.

Risk And Classification

Problem Types: CWE-20

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Selinc	Sel-2241	r113-v0-z001001-d20110721	All	All	All
Hardware	Selinc	Sel-2241	r123-v0-z002001-d20130117	All	All	All
Hardware	Selinc	Sel-2241	r113-v0-z001001-d20110721	All	All	All
Hardware	Selinc	Sel-2241	r123-v0-z002001-d20130117	All	All	All
Hardware	Selinc	Sel-3505	r119-v0-z001001-d20120720	All	All	All
Hardware	Selinc	Sel-3505	r123-v0-z002001-d20130117	All	All	All
Hardware	Selinc	Sel-3505	r119-v0-z001001-d20120720	All	All	All
Hardware	Selinc	Sel-3505	r123-v0-z002001-d20130117	All	All	All
Hardware	Selinc	Sel-3530	r100_-v0-z001001-d20090915	All	All	All
Hardware	Selinc	Sel-3530	r123-v0-z002001	All	All	All
Hardware	Selinc	Sel-3530	r100_-v0-z001001-d20090915	All	All	All
Hardware	Selinc	Sel-3530	r123-v0-z002001	All	All	All
Hardware	Selinc	Sel-3530-4	r107-v0-z001001-d20100818	All	All	All
Hardware	Selinc	Sel-3530-4	r123-v0-z002001-d20130117	All	All	All
Hardware	Selinc	Sel-3530-4	r107-v0-z001001-d20100818	All	All	All
Hardware	Selinc	Sel-3530-4	r123-v0-z002001-d20130117	All	All	All

References

Reference	Source	Link	Tags
Schweitzer Engineering Laboratories Improper Input Validation \| ICS-CERT	MISC	ics-cert.us-cert.gov	US Government Resource
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.