Intrusion Prevention

3S-Smart.CODESYS.Gateway.Server.Memory.Access.Error

Description

This indicates an attack attempt to exploit a Code Execution vulnerability in Smart Software CoDeSys Gateway Server.
The vulnerability is due to insufficient validation in the application when handling certain requests. By sending a crafted request to a targeted server, a remote attacker can exploit this to execute arbitrary code within the context of the server.

Affected Products

Smart Software Solutions CoDeSys prior to 2.3.9.38

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.codesys.com/download.html

CVE References

CVE-2012-4704