漏洞关键信息 Edb-ID: 48860 CVE: N/A Author: LiquidWorm Type: DOS Platform: WINDOWS Date: 2020-10-07 Vulnerable App: BACnet Test Server 1.01 漏洞描述 Title: BACnet Test Server 1.01 - Remote Denial of Service (PoC) Summary: The BACnet Test Server is vulnerable to a denial of service (DoS) vulnerability when sending malformed BVLC Length UDP packet to port 47808, causing the application to crash. Affected Version: 1.01 (BACnet Stack Version 0.5.7) Product: BACnet Interoperability Test Services, Inc. 技术细节 Vendor: https://www.bac-test.com Product Link: https://sourceforge.com/projects/bacnetserver tested on: Microsoft Windows 10 Professional (EN), Microsoft Windows 7 Professional SP1 (EN) exploit code: 提供了Perl脚本用于发送畸形的BVLC Length UDP包,导致服务崩溃。 漏洞发现者 发现者: Gjoko 'LiquidWorm' Krstic Advisory URL: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5597.php