CVE-2013-5741
Tri Nano-10 PLC Firmware <= r81 - Denial of Service via MODBUS Length Field
Title source: llmDescription
Triangle Research International (aka Tri) Nano-10 PLC devices with firmware r81 and earlier do not properly handle large length values in MODBUS data, which allows remote attackers to cause a denial of service (transition to the interrupt state) via a crafted packet to TCP port 502.
References (3)
Core 3
Core References
Various Sources x_refsource_misc
http://blogs.ixiacom.com/ixia-blog/hack-scada-zero-day-vulnerability-discovery-on-the-nano-10-plc/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/97728
Third Party Advisory, VDB Entry x_refsource_misc
http://osvdb.org/ref/97/tri-nano10.txt
Scores
EPSS
0.0219
EPSS Percentile
80.3%
Details
CWE
CWE-20
Status
published
Products (3)
triplc/nano-10_plc
triplc/nano-10_plc_firmware
r80
triplc/nano-10_plc_firmware
< r81
Published
Oct 29, 2013
Tracked Since
Feb 18, 2026