CVE-2010-4142

Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build 6.1.8.10 and earlier allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long 1 SCPCINITIALIZE, 2 SCPCINITIALIZERF, or 3 SCPCTXTEVENT packet. NOTE: it was later reported that 1.06 is...

DATAC RealWin SCADA Server 2.0 (Build 6.1.8.10) - SCPC_INITIALIZE_RF Buffer Overflow

No description provided by source. $Id: realwinscpcinitializerf.rb 11180 2010-11-30 20:19:18Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

DATAC RealWin SCADA Server 2.0 (Build 6.1.8.10) - SCPC_INITIALIZE Buffer Overflow

No description provided by source. $Id: realwinscpcinitialize.rb 11180 2010-11-30 20:19:18Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

DATAC RealWin SCADA Server 2 On_FC_CONNECT_FCS_a_FILE Buffer Overflow

No description provided by source. $Id: realwinonfcbinfilea.rb 12975 2011-06-20 04:01:47Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and ter...

DATAC RealWin SCADA Server 2.0 (Build 6.1.8.10) - SCPC_TXTEVENT Buffer Overflow

No description provided by source. $Id: realwinscpctxtevent.rb 11125 2010-11-24 13:44:46Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms o...

DATAC RealWin SCADA Server 2.0 Remote Stack Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31418/info DATAC RealWin SCADA server is prone to a remote stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execut...

DATAC RealWin <= 2.0 (Build 6.1.8.10) Buffer Overflow Vulnerabilities

No description provided by source. Source: http://aluigi.org/adv/realwin1-adv.txt Luigi Auriemma Application: DATAC RealWin http://www.dataconline.com/software/realwin.php http://www.realflex.com Versions: = 2.0 Build 6.1.8.10 Platforms: Windows Bugs: A stack overflow in SCPCINITIALIZE and...

DATAC RealWin SCADA Server Buffer Overflow

No description provided by source. $Id: realwin.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

RealWin SCADA Server DATAC Login Buffer Overflow

This module exploits a stack buffer overflow in DATAC Control International RealWin SCADA Server 2.1 Build 6.0.10.10 or earlier. By sending a specially crafted OnFCCONNECTFCSLOGIN packet containing a long username, an attacker may be able to execute arbitrary code. This module requires Metasploit...

RealWin SCADA Server DATAC Login Buffer Overflow

Exploit for windows platform in category remote exploits $Id: realwinonfcslogin.rb 13007 2011-06-22 22:36:55Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information ...

DATAC RealWin SCADA Server 2 On_FC_CONNECT_FCS_a_FILE Buffer Overflow

This module exploits a vulnerability found in DATAC Control International RealWin SCADA Server 2.1 and below. By supplying a specially crafted OnFCBINFILEFCSFILE packet via port 910, RealWin will try to create a file which would be saved to C:\Program Files\DATAC\Real Win\RW-version\filename by...

DATAC RealWin SCADA Server 2 - On_FC_CONNECT_FCS_a_FILE Buffer Overflow (Metasploit)

$Id: realwinonfcbinfilea.rb 12975 2011-06-20 04:01:47Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

DATAC RealWin SCADA Server 2 On_FC_CONNECT_FCS_a_FILE BoF

Exploit for windows platform in category remote exploits $Id: realwinonfcbinfilea.rb 12975 2011-06-20 04:01:47Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more informatio...

DATAC RealWin SCADA Server 2 On_FC_CONNECT_FCS_a_FILE Buffer Overflow

$Id: realwinonfcbinfilea.rb 12975 2011-06-20 04:01:47Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

DATAC RealWin SCADA Server TAG function stack overflow

Added: 04/20/2011 CVE: CVE-2011-1563 BID: 46937 Background RealWin is a Supervisory Control and Data Acquisition SCADA server which is distributed by DATAC. Problem A buffer overflow vulnerability in RealWin Server allows remote attackers to execute arbitrary commands by sending a long, specially...

DATAC RealWin SCADA Server TAG function stack overflow

Added: 04/20/2011 CVE: CVE-2011-1563 BID: 46937 Background RealWin is a Supervisory Control and Data Acquisition SCADA server which is distributed by DATAC. Problem A buffer overflow vulnerability in RealWin Server allows remote attackers to execute arbitrary commands by sending a long, specially...

CVE-2011-1564

Multiple integer overflows in the HMI application in DATAC RealFlex RealWin 2.1 Build 6.1.10.10 and earlier allow remote attackers to execute arbitrary code via crafted 1 OnFCMISCFCSMSGBROADCAST and 2 OnFCMISCFCSMSGSEND packets, which trigger a heap-based buffer overflow...

Integer overflow

Multiple integer overflows in the HMI application in DATAC RealFlex RealWin 2.1 Build 6.1.10.10 and earlier allow remote attackers to execute arbitrary code via crafted 1 OnFCMISCFCSMSGBROADCAST and 2 OnFCMISCFCSMSGSEND packets, which trigger a heap-based buffer overflow...

CVE-2011-1564

CVE-2011-1564 affects the DATAC RealFlex RealWin 2.1 HMI application (build 6.1.10.10 and earlier). The advisory states multiple integer overflows in the HMI handling of packets On_FC_MISC_FCS_MSGBROADCAST and On_FC_MISC_FCS_MSGSEND, triggering a heap-based buffer overflow. This is described as a...

Vulnerabilities in some SCADA server softwares

The following are almost all the vulnerabilities I found for a quick experiment some months ago in certain well known server-side SCADA softwares still vulnerable in this moment. In case someone doesn't know SCADA like me before the tests: it's just one or more softwares usually a core, a graphic...