#VU9377 Resource exhaustion in Moxa products - CVE-2017-14028

Cybersecurity Help s.r.o.

Published: 2017-11-21

Vulnerability identifier: #VU9377

Vulnerability risk: Low

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2017-14028

CWE-ID: CWE-400

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
NPort 5110
Hardware solutions / Firmware
NPort 5130
Hardware solutions / Firmware
NPort 5150
Hardware solutions / Firmware

Vendor: Moxa

Description
The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to memory resources exhaustion.A remote attacker can send a large amount of TCP SYN packets and disrupt the availability of the device.

Mitigation
Install update from vendor's website.

Vulnerable software versions

NPort 5110: 3.7

NPort 5130: 3.7

NPort 5150: 2.2 - 2.7

External links
https://ics-cert.us-cert.gov/advisories/ICSA-17-320-01

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Moxa NPort