all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SSA-185699 V1.2 (Last Update: 2022-01-11): Out of Bounds Write Vulnerabilities (NAME:WRECK) in the DNS Module of Nucleus RTOS

Add to bookmarks
Jan. 11, 2022, midnight |

Siemens ProductCERT Security Advisories cert-portal.siemens.com

Security researchers discovered and disclosed 9 vulnerabilities in several DNS implementations, also known as “NAME:WRECK” vulnerabilities. The vulnerabilities described in this advisory are from this set.


The DNS client of the networking component (Nucleus NET) in Nucleus Real-Time Operating System (RTOS) contains two out of bounds write vulnerabilities in the handling of DNS responses that could allow an attacker to cause a denial-of-service condition or to remotely execute code.


Siemens has released updates for several affected products and recommends to …

advisory client dns dns client name networking nucleus operating system real researchers rtos security security researchers ssa system update vulnerabilities

Visit resource

More from cert-portal.siemens.com / Siemens ProductCERT Security Advisories

SSA-750274 V1.0: Impact of CVE-2024-3400 on RUGGEDCOM APE1808 devices configured with Palo Alto Networks Virtual … 2 weeks ago | cert-portal.siemens.com
addresses advisory alto countermeasures +22
SSA-222019 V1.0: X_T File Parsing Vulnerabilities in Parasolid 3 weeks, 3 days ago | cert-portal.siemens.com
application applications attacker code +12
SSA-885980 V1.0: Multiple Vulnerabilities in Scalance W1750D 3 weeks, 3 days ago | cert-portal.siemens.com
attacker buffer buffer overflow code +16
SSA-822518 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW before V11.0.1 on RUGGEDCOM APE1808 … 3 weeks, 3 days ago | cert-portal.siemens.com
advisory alto countermeasures customers +18
SSA-455250 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 devices 3 weeks, 3 days ago | cert-portal.siemens.com
advisory alto countermeasures customers +18
SSA-265688 V1.0: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP V1.1 3 weeks, 3 days ago | cert-portal.siemens.com
countermeasures fix fixes gnu +7
SSA-730482 V1.0: Denial of Service Vulnerability in SIMATIC WinCC 3 weeks, 3 days ago | cert-portal.siemens.com
attacker box denial of service dialog +14
SSA-556635 V1.0: Multiple Vulnerabilities in Telecontrol Server Basic before V3.1.2.0 3 weeks, 3 days ago | cert-portal.siemens.com
1.2.0 basic fixes server +4
SSA-128433 V1.0: Multiple Vulnerabilities in SINEC NMS before V2.0 SP2 3 weeks, 3 days ago | cert-portal.siemens.com
latest nms siemens sinec +4

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Cloud Security Analyst

@ Cloud Peritus | Bengaluru, India
View on infosec-jobs.com

Cyber Program Manager - CISO- United States – Remote

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com

Network Security Engineer (AEGIS)

@ Peraton | Virginia Beach, VA, United States
View on infosec-jobs.com

SC2022-002065 Cyber Security Incident Responder (NS) - MON 13 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com

Information Systems Security Engineer

@ Booz Allen Hamilton | USA, GA, Warner Robins (300 Park Pl Dr)
View on infosec-jobs.com
View more jobs