Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SCADA_REALWIN_2_1_12.NBIN
HistoryApr 25, 2011 - 12:00 a.m.

RealWin < 2.1.12 Multiple Buffer Overflows

2011-04-2500:00:00
This script is Copyright (C) 2011-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

The installed version of RealWin is earlier than 2.1.12 (2.1 Build 6.1.12.12) and thus reportedly affected by seven heap- and stack-based buffer overflow vulnerabilities.

Using a specially crafted sequence of packets to the applications services listening on TCP ports 910 and 912, an unauthenticated remote attacker who can leverage this issue to crash the affected service or to execute code on the affected host with SYSTEM-level privileges.

Note that while the vendor claims the vulnerabilities only affect the demo version of RealWin, there is speculation that this is inaccurate and that use of an encryption option in the commercial version only serves to mitigate the risk of attack, not completely eliminate it.
Given that new versions of both the demo and commercial versions are available, we feel the prudent course of action is for the plugin to check only the version number.

Binary data scada_realwin_2_1_12.nbin
JSON