The remote web server is a version of StruxureWare SCADA Expert ClearSCADA (formerly Schneider Electric ClearSCADA) prior to 2013 R2. It is, therefore, affected by a remote denial of service vulnerability due to a flaw in DNP3Driver.exe.
An attacker can potentially exploit this vulnerability by sending specially crafted IP packets to crash the DNP3 process, leading to a denial of service.
Binary data scada_clearscada_2013_r2.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
schneider-electric | clearscada | cpe:/a:schneider-electric:clearscada |