Reporter SAINT Corporation
RealWin is a Supervisory Control and Data Acquisition (SCADA) server which is distributed by DATAC.
A buffer overflow vulnerability in RealWin Server allows remote attackers to execute arbitrary commands by sending a long, specially crafted FC_SCRIPT_FCS_STARTPROG packet.
Block access to port 910/TCP.
Exploit works on RealFlex RealWin SCADA System 1.6.