Wonderware vulnerability patch posted
There is a buffer overflow vulnerability in the Wonderware InBatch and I/A Series Batch software products (all supported versions), according to the Industrial Control System Cyber Emergency Response Team (ICS-CERT).
03/24/2011
There is a buffer overflow vulnerability in the Wonderware InBatch and I/A Series Batch software products (all supported versions), according to the Industrial Control System Cyber Emergency Response Team (ICS-CERT).
The service listening on TCP Port 9001 is vulnerable to a buffer overflow that could cause denial of service (DoS) or the possible execution of arbitrary code, according to an independent security researcher’s report. This vulnerability is remotely exploitable and exploit code is publicly available.
Read the full-length article here.
- Related News:
Wind farm online after rotor crash - 24.03.2011 10:16- U.S. nuke design could help Japan - 24.03.2011 10:15
- Refinery faces fines over safety issues - 24.03.2011 10:14
- PG+E created own pipeline safety rule - 24.03.2011 10:13
- Crew feared pipeline pressure - 24.03.2011 10:12
- Walkie Talkie shuts nuke plant safety system - 24.03.2011 10:11
- Cyber task force eyes power grid - 24.03.2011 10:10
- Antivirus tools no match for different attack vectors - 24.03.2011 10:09
- Malware report: Learn from past attacks - 24.03.2011 10:08
- Hackers get hacked - 24.03.2011 10:07
- RSA hit by cyber attack - 24.03.2011 10:06
- More SCADA vulnerabilities found - 24.03.2011 10:05
- Stuxnet report V: Security culture needs work - 24.03.2011 10:03
- Stuxnet report IV: Worm slithers in - 24.03.2011 10:02
- Stuxnet report III: Worm selects site - 24.03.2011 10:01
No comments