Denial of Service Vulnerability in Moxa Secure Router EDR-G903 Devices
CVE-2016-0878

7.5HIGH

Key Information:

Vendor: Moxa
Status: Edr-g903 Firmware
Vendor: CVE Published:; 31 May 2016

Summary

Moxa Secure Router EDR-G903 devices prior to version 3.4.12 contain a vulnerability that allows remote attackers to execute a denial of service attack. By sending two specially crafted ping requests, an attacker can trigger a cold start, causing the device to become unresponsive. This vulnerability poses a significant risk to network operations and integrity, requiring prompt attention and patching to maintain security.

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-042-01

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 31, 2016
Vulnerability Reserved
Dec 17, 2015