CVE-2019-14462

CRITICAL LAB

libmodbus <3.0.7, <3.1.5 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-14462. PoCs published by spanwich.

AI-analyzed exploit summary This repository contains functional exploit code for CVE-2019-14462, a heap buffer overflow in libmodbus 3.1.2, along with a detailed technical analysis and a defensive research framework comparing seL4 and Snort architectures. The PoC demonstrates the vulnerability by exploiting malformed MBAP header length fields.

Description

An issue was discovered in libmodbus before 3.0.7 and 3.1.x before 3.1.5. There is an out-of-bounds read for the MODBUS_FC_WRITE_MULTIPLE_COILS case, aka VD-1302.

Exploits (1)

nomisec WORKING POC

by spanwich · poc

https://github.com/spanwich/sel4-ics-gateway-demo

View Code ZIP pw:eip

This repository contains functional exploit code for CVE-2019-14462, a heap buffer overflow in libmodbus 3.1.2, along with a detailed technical analysis and a defensive research framework comparing seL4 and Snort architectures. The PoC demonstrates the vulnerability by exploiting malformed MBAP header length fields.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: libmodbus ≤ 3.1.2

No auth needed

Prerequisites: Network access to a vulnerable Modbus server · Ability to send crafted Modbus packets

MITRE ATT&CK