CVE-2015-7937 - Vulnerability Details - OpenCVE

Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP Basic Authentication data.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Schneider-electric	Bmxnoc0401 Bmxnoe0100 Bmxnoe0100h Bmxnoe0110 Bmxnoe0110h Bmxnor0200 Bmxnor0200h Bmxpra0100 Modicon M340 Bmxp342020 Modicon M340 Bmxp342020h Modicon M340 Bmxp342030 Modicon M340 Bmxp3420302 Modicon M340 Bmxp3420302h

Configuration 1 [-]

OR	cpe:2.3:h:schneider-electric:bmxnoc0401:-:::::::*
	cpe:2.3:h:schneider-electric:bmxnoe0100:-:::::::*
	cpe:2.3:h:schneider-electric:bmxnoe0100h:-:::::::*
	cpe:2.3:h:schneider-electric:bmxnoe0110:-:::::::*
	cpe:2.3:h:schneider-electric:bmxnoe0110h:-:::::::*
	cpe:2.3:h:schneider-electric:bmxnor0200:-:::::::*
	cpe:2.3:h:schneider-electric:bmxnor0200h:-:::::::*
	cpe:2.3:h:schneider-electric:bmxpra0100:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020h:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp342030:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302h:-:::::::*

No data.

References

Link	Providers
http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-344-01
http://www.securityfocus.com/bid/79622
https://ics-cert.us-cert.gov/advisories/ICSA-15-351-01

History

No history.

MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2015-12-21T11:00:00

Updated: 2024-08-06T08:06:30.903Z

Reserved: 2015-10-22T00:00:00

Link: CVE-2015-7937

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2015-12-21T11:59:12.097

Modified: 2025-04-12T10:46:40.837

Link: CVE-2015-7937

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-12-17T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP Basic Authentication data."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-11-25T19:57:01", "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-351-01"}, {"name": "79622", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/79622"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-344-01"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "ics-cert@hq.dhs.gov", "ID": "CVE-2015-7937", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP Basic Authentication data."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://ics-cert.us-cert.gov/advisories/ICSA-15-351-01", "refsource": "MISC", "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-351-01"}, {"name": "79622", "refsource": "BID", "url": "http://www.securityfocus.com/bid/79622"}, {"name": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-344-01", "refsource": "CONFIRM", "url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-344-01"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T08:06:30.903Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-351-01"}, {"name": "79622", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/79622"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-344-01"}]}]}, "cveMetadata": {"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "assignerShortName": "icscert", "cveId": "CVE-2015-7937", "datePublished": "2015-12-21T11:00:00", "dateReserved": "2015-10-22T00:00:00", "dateUpdated": "2024-08-06T08:06:30.903Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:schneider-electric:bmxnoc0401:-:*:*:*:*:*:*:*", "matchCriteriaId": "DF08654A-FFCB-47D3-AC82-DF7284548962", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:bmxnoe0100:-:*:*:*:*:*:*:*", "matchCriteriaId": "80FC6FF2-D662-4A57-AAA6-BC04351DC779", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:bmxnoe0100h:-:*:*:*:*:*:*:*", "matchCriteriaId": "C37C1E3E-CA86-4AB5-82A8-BA758F02475D", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:bmxnoe0110:-:*:*:*:*:*:*:*", "matchCriteriaId": "98F3B055-8919-4E09-9827-288F0A03DAFF", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:bmxnoe0110h:-:*:*:*:*:*:*:*", "matchCriteriaId": "1E47DB14-EF4B-4E4E-9DA2-B3F6EFA72BF4", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:bmxnor0200:-:*:*:*:*:*:*:*", "matchCriteriaId": "ABF43229-1E2E-493A-B44F-DD2870559A93", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:bmxnor0200h:-:*:*:*:*:*:*:*", "matchCriteriaId": "60D9A366-3394-4275-B884-AE6E7227156E", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:bmxpra0100:-:*:*:*:*:*:*:*", "matchCriteriaId": "87FE8964-ECA5-4F5C-933D-F527BDDA1316", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*", "matchCriteriaId": "99F2F851-C18F-4CB8-B47C-516F2AC7955D", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020h:-:*:*:*:*:*:*:*", "matchCriteriaId": "56BAED8B-EEFA-45D7-A5A3-9B62067CE24C", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp342030:-:*:*:*:*:*:*:*", "matchCriteriaId": "E472ABB0-5556-4B96-9CEF-2180E24FA7FD", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302:-:*:*:*:*:*:*:*", "matchCriteriaId": "354968F7-C41B-4C21-8E47-81DC07DF0EA5", "vulnerable": true}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302h:-:*:*:*:*:*:*:*", "matchCriteriaId": "075A16D1-F4DF-4DCB-8DF9-152E282CE01F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP Basic Authentication data."}, {"lang": "es", "value": "Desbordamiento de buffer basado en pila en GoAhead Web Server en dispositivos Schneider Electric Modicon M340 PLC BMXNOx y BMXPx permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de una contrase\u00f1a larga en los datos de HTTP Basic Authentication."}], "id": "CVE-2015-7937", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-12-21T11:59:12.097", "references": [{"source": "ics-cert@hq.dhs.gov", "tags": ["Vendor Advisory"], "url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-344-01"}, {"source": "ics-cert@hq.dhs.gov", "url": "http://www.securityfocus.com/bid/79622"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-351-01"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-344-01"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/79622"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-351-01"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}