Lucene search
SAINT CorporationSAINT:F319A83C75AA1F84175D98A61164541EHistoryApr 17, 2011 - 12:00 a.m.
7-Technologies Interactive Graphical SCADA System Remote Code Execution
2011-04-1700:00:00
SAINT Corporation
www.saintcorporation.com
22
0.726 High
EPSS
Percentile
98.1%
Added: 04/17/2011
CVE: CVE-2011-1567
BID: 46936
Background
7-Technologies Interactive Graphical SCADA System (IGSS) is a SCADA solution used mainly in Denmark and the US.
Problem
7T IGSS server contains multiple stack overflows, a format string vulnerability, a remote command execution vulnerability, and a directory traversal vulnerability.
Resolution
Upgrade to version 9.00.00.11083 or higher.
References
<http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-080-03.pdf>
<http://aluigi.org/adv/igss_2-adv.txt>
Limitations
This exploit has been tested against 7-Technologies IGSS 9.0 on Windows Server 2003 SP2 English (DEP OptOut) with KB956802 and KB2393802.
Platforms
Windows
Related
saint
saint
7-Technologies Interactive Graphical SCADA System Remote Code Execution
2011-04-17 00:00:00
7-Technologies Interactive Graphical SCADA System Remote Code Execution
2011-04-17 00:00:00
7-Technologies Interactive Graphical SCADA System Remote Code Execution
2011-04-17 00:00:00
prion
prion
Stack overflow
2011-04-05 15:19:00
packetstorm
packetstorm
7-Technologies IGSS <= v9.00.00 b11063 IGSSdataServer.exe Stack Overflow
2011-05-16 00:00:00
cve
cve
CVE-2011-1567
2011-04-05 15:19:36
cvelist
cvelist
CVE-2011-1567
2011-04-05 15:00:00
nvd
nvd
CVE-2011-1567
2011-04-05 15:19:36
openvas
openvas
7T Interactive Graphical SCADA System Multiple Security Vulnerabilities
2011-03-28 00:00:00
7T Interactive Graphical SCADA System Multiple Security Vulnerabilities
2011-03-28 00:00:00
checkpoint_advisories
checkpoint_advisories