Moxa Industrial Managed Switch Denial of Service Vulnerability (CVE-2015-6465)
Moxa Industrial Managed Switch Denial of Service Vulnerability (CVE-2015-6465)
Release date:
Updated on: 2015-09-07
Affected Systems:
Moxa Industrial Managed Switch EDS-408A
Moxa Industrial Managed Switch EDS-405A
Description:
CVE (CAN) ID: CVE-2015-6465
Moxa EDS-405A/EDS-408A is an Ethernet switch family product.
A denial of service vulnerability exists in the embedded GoAhead Web server of the Moxa EDS-405A/EDS-408A, which can be exploited by authenticated attackers to restart the affected device through a constructed URL.
<* Source: Erwin Paternotte
Link: https://ics-cert.us-cert.gov/advisories/ICSA-15-246-03
*>
Suggestion:
Vendor patch:
Moxa
----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.moxa.com/support/sarch_result.aspx? Type = soft & prod_id = 4 & type_id = 4
This article permanently updates the link address: