Bacnet Protocol Stack 0.8.6 Denial Of Service Vulnerability


BACnet Protocol Stack through 0.8.6 could allow an unauthenticated, remote attacker to cause a denial of service (bacserv daemon crash) because there is an invalid read in bacdcode.c during parsing of alarm tag numbers.


The information has been provided by Steve Karg
The original article can be found at:


Bacnet Protocol Stack is prone to a denial of service (DoS) vulnerability.This allow a remote attacker to cause a denial of service (DoS) condition due to high consumption of system resources via certain vulnerable vectors.

Vulnerable Systems:

  • Bacnet Protocol Stack 0.8.6

CVE Information:


Disclosure Timeline:
Publish Date:05/30/2019

Categories: News