Carl Hurd of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.
Cisco Talos recently discovered an exploitable code execution vulnerability in 3S’ CODESYS Control SoftPLC runtime system. The system allows any embedded or PC device to convert into an IEC 61131-3-complaint industrial controller. A specific task in this system contains a code execution vulnerability that an attacker could exploit by sending a malicious packet to the victim machine.
In accordance with our…
[[ This is only the beginning! Please visit the blog for the complete entry ]]
Article Link: http://feedproxy.google.com/~r/feedburner/Talos/~3/wGVtsu3nHxg/vuln-spotlight-3S-codesys-may-2020.html