Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:B562473FEA5FF2437D6BB8DFFBC42FDE
HistoryApr 01, 2011 - 12:00 a.m.

RealFlex RealWin FC_RFUSER_FCS_LOGIN Buffer Overflow

2011-04-0100:00:00
SAINT Corporation
my.saintcorporation.com
22

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.614 Medium

EPSS

Percentile

97.8%

JSON

Added: 04/01/2011
CVE: CVE-2011-1563
BID: 46937

Background

RealWin is a Supervisory Control and Data Acquisition (SCADA) server which is distributed by DATAC.

Problem

A buffer overflow vulnerability in RealWin Server allows remote attackers to execute arbitrary commands by sending a long, specially crafted FC_RFUSER_FCS_LOGIN packet.

Resolution

Block access to port 910/TCP.

References

<http://secunia.com/advisories/43848&gt;

Limitations

Exploit works on RealFlex RealWin SCADA System 1.6 on Microsoft Windows Server 2003 SP2 with KB956802 and KB2393802.

Platforms

Windows 2003

Related

cve 1
saint 11
openvas 3
prion 1
checkpoint_advisories 1
nvd 1
cvelist 1
cve
cve
CVE-2011-1563
2011-04-05 15:19:35
saint
saint
RealFlex RealWin FC_SCRIPT_FCS_STARTPROG Buffer Overflow
2011-04-11 00:00:00
RealFlex RealWin FC_RFUSER_FCS_LOGIN Buffer Overflow
2011-04-01 00:00:00
RealFlex RealWin FC_SCRIPT_FCS_STARTPROG Buffer Overflow
2011-04-11 00:00:00
openvas
openvas
DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability
2011-06-24 00:00:00
DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability
2011-06-24 00:00:00
ActivDesk < 3.0.1 Multiple Vulnerabilities - Active Check
2011-07-01 00:00:00
prion
prion
Stack overflow
2011-04-05 15:19:00
checkpoint_advisories
checkpoint_advisories
RealFlex RealWin Tag Manipulation Buffer Overflow (CVE-2011-1563)
2011-05-03 00:00:00
nvd
nvd
CVE-2011-1563
2011-04-05 15:19:35
cvelist
cvelist
CVE-2011-1563
2011-04-05 15:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.614 Medium

EPSS

Percentile

97.8%

JSON
Related for SAINT:B562473FEA5FF2437D6BB8DFFBC42FDE
cve1saint11openvas3prion1checkpoint_advisories1nvd1cvelist1