Sign-up

ID

VAR-201408-0100


CVE

CVE-2014-2357


TITLE

SUBNET SubSTATION Server of Telegyr 8979 Master Protocol Service disruption in applications (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2014-003738

DESCRIPTION

The GPT library in the Telegyr 8979 Master Protocol application in SUBNET SubSTATION Server 2 before SSNET 2.12 HF18808 allows remote attackers to cause a denial of service (persistent service crash) via a long RTU-to-Master message. SubSTATION Server is a versatile software for intelligent substation intelligence and IT networks for data aggregation, protocol translation, automation logic and more. A security vulnerability exists in the SubSTATION Server protocol. An attacker can trigger a buffer overflow by sending a specially crafted RTU message to the Telegyr 8979 master, causing a denial of service attack. SubSTATION Server is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data. Attackers may be able to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions

Trust: 2.61

sources: NVD: CVE-2014-2357 // JVNDB: JVNDB-2014-003738 // CNVD: CNVD-2014-04877 // BID: 68992 // IVD: c08afcfe-1ec6-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: c08afcfe-1ec6-11e6-abef-000c29c66e3d // CNVD: CNVD-2014-04877

AFFECTED PRODUCTS

vendor:subnetmodel:substation serverscope:lteversion:2.12

Trust: 1.0

vendor:subnetmodel:substation serverscope:ltversion:ssnet 2.12 hf18808 2

Trust: 0.8

vendor:substationmodel:server telegyr master protocolscope:eqversion:28979

Trust: 0.6

vendor:subnetmodel:substation serverscope:eqversion:2.12

Trust: 0.6

vendor:substation servermodel: - scope:eqversion:*

Trust: 0.2

sources: IVD: c08afcfe-1ec6-11e6-abef-000c29c66e3d // CNVD: CNVD-2014-04877 // JVNDB: JVNDB-2014-003738 // CNNVD: CNNVD-201408-081 // NVD: CVE-2014-2357

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2014-2357
value: HIGH

Trust: 1.0

NVD: CVE-2014-2357
value: HIGH

Trust: 0.8

CNVD: CNVD-2014-04877
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201408-081
value: HIGH

Trust: 0.6

IVD: c08afcfe-1ec6-11e6-abef-000c29c66e3d
value: HIGH

Trust: 0.2

nvd@nist.gov: CVE-2014-2357
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2014-04877
severity: HIGH
baseScore: 8.3
vectorString: AV:A/AC:L/AU:N/C:C/I:C/A:C
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 6.5
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: c08afcfe-1ec6-11e6-abef-000c29c66e3d
severity: HIGH
baseScore: 8.3
vectorString: AV:A/AC:L/AU:N/C:C/I:C/A:C
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 6.5
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

sources: IVD: c08afcfe-1ec6-11e6-abef-000c29c66e3d // CNVD: CNVD-2014-04877 // JVNDB: JVNDB-2014-003738 // CNNVD: CNNVD-201408-081 // NVD: CVE-2014-2357

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.8

sources: JVNDB: JVNDB-2014-003738 // NVD: CVE-2014-2357

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201408-081

TYPE

Buffer overflow

Trust: 0.8

sources: IVD: c08afcfe-1ec6-11e6-abef-000c29c66e3d // CNNVD: CNNVD-201408-081

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2014-003738

PATCH
title:SUBNET SubSTATION Serverurl:http://www.subnet.com/products/substation-server.aspx
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2014-003738

EXTERNAL IDS
db:NVDid:CVE-2014-2357
Trust: 3.5
db:ICS CERTid:ICSA-14-196-01
Trust: 3.0
db:BIDid:68992
Trust: 1.5
db:CNVDid:CNVD-2014-04877
Trust: 0.8
db:CNNVDid:CNNVD-201408-081
Trust: 0.8
db:JVNDBid:JVNDB-2014-003738
Trust: 0.8
db:OSVDBid:109738
Trust: 0.6
db:IVDid:C08AFCFE-1EC6-11E6-ABEF-000C29C66E3D
Trust: 0.2
sources:
            
            
            IVD: c08afcfe-1ec6-11e6-abef-000c29c66e3d // 
            
            
            
            CNVD: CNVD-2014-04877 // 
            
            
            
            BID: 68992 // 
            
            
            
            JVNDB: JVNDB-2014-003738 // 
            
            
            
            CNNVD: CNNVD-201408-081 // 
            
            
            
            NVD: CVE-2014-2357

REFERENCES
url:https://ics-cert.us-cert.gov/advisories/icsa-14-196-01
Trust: 3.0
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-2357
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-2357
Trust: 0.8
url:http://osvdb.com/show/osvdb/109738
Trust: 0.6
url:http://www.securityfocus.com/bid/68992
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2014-04877 // 
            
            
            
            JVNDB: JVNDB-2014-003738 // 
            
            
            
            CNNVD: CNNVD-201408-081 // 
            
            
            
            NVD: CVE-2014-2357

CREDITS
Adam Crain of Automatak, and Chris Sistrunk of Mandiant
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201408-081

SOURCES
db:IVDid:c08afcfe-1ec6-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2014-04877
db:BIDid:68992
db:JVNDBid:JVNDB-2014-003738
db:CNNVDid:CNNVD-201408-081
db:NVDid:CVE-2014-2357

LAST UPDATE DATE
2025-04-12T23:00:11.204000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2014-04877date:2014-08-08T00:00:00
db:BIDid:68992date:2014-08-01T00:00:00
db:JVNDBid:JVNDB-2014-003738date:2014-08-13T00:00:00
db:CNNVDid:CNNVD-201408-081date:2014-08-12T00:00:00
db:NVDid:CVE-2014-2357date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:IVDid:c08afcfe-1ec6-11e6-abef-000c29c66e3ddate:2014-08-08T00:00:00
db:CNVDid:CNVD-2014-04877date:2014-08-08T00:00:00
db:BIDid:68992date:2014-08-01T00:00:00
db:JVNDBid:JVNDB-2014-003738date:2014-08-13T00:00:00
db:CNNVDid:CNNVD-201408-081date:2014-08-06T00:00:00
db:NVDid:CVE-2014-2357date:2014-08-11T22:55:04.210