| 제목 | Shanghai Sunfull Automation Co., LTD. HMI1002-ARM Firmware Revision: 2.0.4 Buffer Overflow |
|---|
| 설명 | The vulnerability arises when the device processes a malformed message, leading to a buffer overflow. This issue is specifically triggered by improper handling of data within the device, causing memory to overflow into adjacent areas designated for protocol data unit handling. As a result, the device generates a response with an erroneous APDU that includes data reflective of the overflowed buffer content. This malfunction indicates a critical flaw in the device’s memory management that could potentially be exploited to alter device operations or extract sensitive information. |
|---|
| 원천 | ⚠️ https://github.com/isZzzz/HMI1002-ARM-Gateway-Document/blob/main/HMI1002-ARM%20apply.pdf |
|---|
| 사용자 | isZzzzz (UID 64489) |
|---|
| 제출 | 2024. 04. 28. AM 06:08 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 05. 05. AM 09:06 (7 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 263115 [Shanghai Sunfull Automation BACnet Server HMI1002-ARM 2.0.4 Message 메모리 손상] |
|---|
| 포인트들 | 20 |
|---|