CVE-2020-13556: Out-of-bounds write in OpENer EtherNet/IP stack

# Description

An out-of-bounds write vulnerability exists in the Ethernet/IP server functionality of EIP Stack Group OpENer 2.3 and development commit 8c73bf3. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability.

# Root cause

Out-of-bounds write.

# Software

## Name

EIP Stack Group OpENer

## Versions affected

2.3 - 8c73bf3
  
## Fix

https://github.com/EIPStackGroup/OpENer/commit/8c73bf37c1100907c0ba65465894bc98822c55ab

# Exploit

# Links
- [CVE Entry](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13556)
- [In-depth analysis](https://talosintelligence.com/vulnerability_reports/TALOS-2020-1170)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

CVE-2020-13556: Out-of-bounds write in OpENer EtherNet/IP stack #77

Description

Root cause

Software

Name

Versions affected

Fix

Exploit

Links

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CVE-2020-13556: Out-of-bounds write in OpENer EtherNet/IP stack #77

Description

Description

Root cause

Software

Name

Versions affected

Fix

Exploit

Links

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions