Buffer Overflow Affecting opcfoundation.netstandard.opc.ua Open this link in a new tab package, versions [,1.4.353.15)


0.0
high
  • Attack Complexity

    Low

  • Availability

    High

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • snyk-id

    SNYK-DOTNET-OPCFOUNDATIONNETSTANDARDOPCUA-460346

  • published

    28 Aug 2019

  • disclosed

    14 Sep 2018

  • credit

    Unknown

How to fix?

Upgrade OPCFoundation.NetStandard.Opc.Ua to version 1.4.353.15 or higher.

Overview

OPCFoundation.NetStandard.Opc.Ua is a package that contains the OPC UA reference implementation and is targeting the .NET Standard Library.

Affected versions of this package are vulnerable to Buffer Overflow. It allows remote attackers to trigger a stack overflow with carefully structured requests.