Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:4E52782167A51CBDE8D084DA2D0F8DDE
HistoryApr 20, 2011 - 12:00 a.m.

DATAC RealWin SCADA Server TAG function stack overflow

2011-04-2000:00:00
SAINT Corporation
my.saintcorporation.com
29

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.614

Percentile

97.8%

JSON

Added: 04/20/2011
CVE: CVE-2011-1563
BID: 46937

Background

RealWin is a Supervisory Control and Data Acquisition (SCADA) server which is distributed by DATAC.

Problem

A buffer overflow vulnerability in RealWin Server allows remote attackers to execute arbitrary commands by sending a long, specially crafted FC_CTAGLIST_FCS_CADDTAG, FC_CTAGLIST_FCS_CDELTAG or FC_CTAGLIST_FCS_ADDTAGMS packet.

Resolution

Block access to port 910/TCP.

References

<http://aluigi.org/adv/realwin_3-adv.txt&gt;
<http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-080-04.pdf&gt;
<http://secunia.com/advisories/43848&gt;

Limitations

This exploit works against RealFlex RealWin SCADA System 1.6a on Windows Server 2003 SP2 English (DEP OptOut) with KB956802 and KB2393802, and on Windows Server 2008 SP2 English (DEP AlwaysOff).

Platforms

Windows Server 2003
Windows Server 2008

Related

saint 11
metasploit 2
cve 1
prion 1
openvas 3
checkpoint_advisories 1
nvd 1
cvelist 1
exploitdb 1
saint
saint
RealFlex RealWin FC_SCRIPT_FCS_STARTPROG Buffer Overflow
2011-04-11 00:00:00
RealFlex RealWin FC_SCRIPT_FCS_STARTPROG Buffer Overflow
2011-04-11 00:00:00
RealFlex RealWin FC_RFUSER_FCS_LOGIN Buffer Overflow
2011-04-01 00:00:00
metasploit
metasploit
RealWin SCADA Server DATAC Login Buffer Overflow
2011-06-22 22:36:55
DATAC RealWin SCADA Server 2 On_FC_CONNECT_FCS_a_FILE Buffer Overflow
2011-06-20 00:37:13
cve
cve
CVE-2011-1563
2011-04-05 15:19:35
prion
prion
Stack overflow
2011-04-05 15:19:00
openvas
openvas
DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability
2011-06-24 00:00:00
DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability
2011-06-24 00:00:00
ActivDesk < 3.0.1 Multiple Vulnerabilities - Active Check
2011-07-01 00:00:00
checkpoint_advisories
checkpoint_advisories
RealFlex RealWin Tag Manipulation Buffer Overflow (CVE-2011-1563)
2011-05-03 00:00:00
nvd
nvd
CVE-2011-1563
2011-04-05 15:19:35
cvelist
cvelist
CVE-2011-1563
2011-04-05 15:00:00
exploitdb
exploitdb
DATAC RealWin - Multiple Vulnerabilities
2011-03-22 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.614

Percentile

97.8%

JSON
Related for SAINT:4E52782167A51CBDE8D084DA2D0F8DDE
saint11metasploit2cve1prion1openvas3checkpoint_advisories1nvd1cvelist1exploitdb1