Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:496040
HistoryFeb 03, 2011 - 12:00 a.m.

Sielco Sistemi Winlog server stack overflow

2011-02-0300:00:00
www.kb.cert.org
10

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.963 High

EPSS

Percentile

99.6%

JSON

Overview

Sielco Sistemi Winlog TCP/IP server contains a stack overflow vulnerability

Description

According to Sielco Sistemi’s website: “Winlog is a software package for SCADA/HMI applications with web support, OPC client and a wide library of communication drivers and protocols for most PLCs (Siemens, Omron, Allen Bradley, Modbus, etc.)” Sielco Sistemi Winlog has the capability to accept remote connections by enabling the “Run TCP/IP server” option. The server listens on port 46823/tcp. A specially crafted packet from a remote attacker can cause a stack overflow possibly allowing an attacker to execute arbitrary code.

For additional information see ICS-CERT Advisory ICSA-11-017-02.

Public exploit code is available for this vulnerability.

Impact

A remote attacker can cause the device to crash and may be able to execute arbitrary code.

Solution

Upgrade

Sielco Sistemi recommends that users update their Winlog Lite and Winlog Pro to version 2.07.01.

Restrict Access

Enable firewall rules to restrict access for port 46823/tcp to only trusted sources.

Vendor Information

496040

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Sielco Affected

Updated: January 19, 2011

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

Thanks to Luigi Auriemma for reporting this vulnerability.

This document was written by Michael Orlando.

Other Information

CVE IDs: CVE-2011-0517
Severity Metric: 1.10 Date Public:

Related

cve 1
checkpoint_advisories 1
prion 1
nvd 1
cvelist 1
packetstorm 1
cve
cve
CVE-2011-0517
2011-01-20 19:00:12
checkpoint_advisories
checkpoint_advisories
Sielco Sistemi Winlog Server Buffer Overflow (CVE-2011-0517)
2012-11-25 00:00:00
prion
prion
Stack overflow
2011-01-20 19:00:00
nvd
nvd
CVE-2011-0517
2011-01-20 19:00:12
cvelist
cvelist
CVE-2011-0517
2011-01-20 18:00:00
packetstorm
packetstorm
Sielco Sistemi Winlog Buffer Overflow
2011-06-23 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.963 High

EPSS

Percentile

99.6%

JSON
Related for VU:496040
cve1checkpoint_advisories1prion1nvd1cvelist1packetstorm1