CVE-2013-2794

Severity CVSS v4.0:

Pending analysis

Type:

CWE-119 Buffer Errors

Publication date:

09/09/2013

Last modified:

11/04/2025

Description

Triangle MicroWorks SCADA Data Gateway 2.50.0309 through 3.00.0616, DNP3 .NET Protocol components 3.06.0.171 through 3.15.0.369, and DNP3 C libraries 3.06.0000 through 3.15.0000 allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line.

Impact

Vector 2.0

AV:L/AC:L/Au:N/C:N/I:N/A:C CVSS v2.0 Severity and Metrics:

Base Score: 4.90 MEDIUM
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Attack Vector (AV): Local
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): None
Integrity (I): None
Availability (A): Complete

Base Score 2.0

4.90

Severity 2.0

MEDIUM

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.06.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.07.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.08.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.09.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.10.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.11.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.12.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.13.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.14.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.15.0000:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.06.0.171:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.07.00:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.08.00:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.09.00:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.10.00:::::::*

To consult the complete list of CPE names with products and versions, see this page

CPE	From	Up to
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.06.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.07.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.08.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.09.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.10.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.11.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.12.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.13.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.14.0000:::::::*
cpe:2.3:a:trianglemicroworks:ansi_c_source_code_libraries:3.15.0000:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.06.0.171:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.07.00:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.08.00:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.09.00:::::::*
cpe:2.3:a:trianglemicroworks:.net_communication_protocol_components:3.10.00:::::::*

CVE-2013-2794

Description

Impact

Vulnerable products and versions

References to Advisories, Solutions, and Tools