CVE-2013-2793
high
CVSS v3
—
CVSS v2
7.8
VIR risk
7.8
Description
Triangle MicroWorks SCADA Data Gateway 2.50.0309 through 3.00.0616, DNP3 .NET Protocol components 3.06.0.171 through 3.15.0.369, and DNP3 C libraries 3.06.0000 through 3.15.0000 allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| trianglemicroworks | .net_communication_protocol_components | 3.06.0.171 | |
| trianglemicroworks | .net_communication_protocol_components | 3.15.0.369 | |
| trianglemicroworks | ansi_c_source_code_libraries | 3.06.0000 | |
| trianglemicroworks | ansi_c_source_code_libraries | 3.15.0000 | |
| trianglemicroworks | scada_data_gateway | 2.50 | |
| trianglemicroworks | scada_data_gateway | 2.50.0309 | |
| trianglemicroworks | scada_data_gateway | 3.00.0616 | |
References
CWEs
CWE-119
Verify integrity in audit chain (admin only). AS-IS.