Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:967DB3D05166C235AAA1BE51E929A83E
HistoryApr 11, 2011 - 12:00 a.m.

RealFlex RealWin FC_SCRIPT_FCS_STARTPROG Buffer Overflow

2011-04-1100:00:00
SAINT Corporation
download.saintcorporation.com
17

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.614 Medium

EPSS

Percentile

97.8%

JSON

Added: 04/11/2011
CVE: CVE-2011-1563
BID: 46937

Background

RealWin is a Supervisory Control and Data Acquisition (SCADA) server which is distributed by DATAC.

Problem

A buffer overflow vulnerability in RealWin Server allows remote attackers to execute arbitrary commands by sending a long, specially crafted FC_SCRIPT_FCS_STARTPROG packet.

Resolution

Block access to port 910/TCP.

References

<http://secunia.com/advisories/43848&gt;

Limitations

Exploit works on RealFlex RealWin SCADA System 1.6.

Platforms

Windows

Related

cve 1
saint 11
openvas 3
cvelist 1
checkpoint_advisories 1
nvd 1
prion 1
cve
cve
CVE-2011-1563
2011-04-05 15:19:35
saint
saint
RealFlex RealWin FC_SCRIPT_FCS_STARTPROG Buffer Overflow
2011-04-11 00:00:00
RealFlex RealWin FC_RFUSER_FCS_LOGIN Buffer Overflow
2011-04-01 00:00:00
RealFlex RealWin FC_RFUSER_FCS_LOGIN Buffer Overflow
2011-04-01 00:00:00
openvas
openvas
DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability
2011-06-24 00:00:00
DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability
2011-06-24 00:00:00
ActivDesk < 3.0.1 Multiple Vulnerabilities - Active Check
2011-07-01 00:00:00
cvelist
cvelist
CVE-2011-1563
2011-04-05 15:00:00
checkpoint_advisories
checkpoint_advisories
RealFlex RealWin Tag Manipulation Buffer Overflow (CVE-2011-1563)
2011-05-03 00:00:00
nvd
nvd
CVE-2011-1563
2011-04-05 15:19:35
prion
prion
Stack overflow
2011-04-05 15:19:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.614 Medium

EPSS

Percentile

97.8%

JSON
Related for SAINT:967DB3D05166C235AAA1BE51E929A83E
cve1saint11openvas3cvelist1checkpoint_advisories1nvd1prion1