4207 matches found
COPA-DATA Improper Input Validation
OVERVIEW Automation software company Ing. Punzenberger COPA-DATA GmbH reported an improper input validation vulnerability affecting the DNP3 driver in the zenon SCADA software. The vulnerability was found based on the DNP3 research conducted by Adam Crain of Automatak and Chris Sistrunk of...
Cogent DataHub Vulnerabilities
OVERVIEW Independent researcher Alain Homewood has identified four vulnerabilities in the Cogent Real-Time Systems DataHub application. Cogent Real-Time Systems has produced a new version that mitigates three of the four identified vulnerabilities; they have recommended a mitigation for the...
Triangle MicroWorks Uncontrolled Resource Consumption
OVERVIEW Adam Crain of Automatak and Chris Sistrunk of Mandiant have identified an uncontrolled resource consumption vulnerability in Triangle MicroWorks products and third-party components. Triangle MicroWorks has produced an update that mitigates this vulnerability. This vulnerability could be...
Unified Automation OPC SDK OpenSSL Vulnerability
OVERVIEW On April 09, 2014, Unified Automation GmbH announced that its OPC UA Software Development Kits SDKs for Windows included vulnerable OpenSSL libraries. HTTPS support is disabled by default in Unified Automation SDK products. However if HTTPS is used, Unified Automation recommends replacin...
CSWorks Software SQL Injection Vulnerability
OVERVIEW Researcher John Leitch, working with HP’s Zero Day Initiative ZDI, has identified an SQL injection vulnerability in CSWorks’ CSWorks software framework. CSWorks has produced an updated version that mitigates this vulnerability. This vulnerability could be exploited remotely. AFFECTED...
Schneider Electric Wonderware Intelligence Security Patch for OpenSSL Vulnerability
OVERVIEW Schneider Electric Wonderware’s Cyber Security Team has identified an OpenSSL Heartbleed vulnerability in the Wonderware Intelligence application, caused by a third-party component. Schneider Electric Wonderware has produced a patch that mitigates this vulnerability. This vulnerability...
OpenSSL Vulnerability
OVERVIEW This advisory is a follow-up to the updated alert titled ICS-ALERT-14-099-01E Situational Awareness Alert for OpenSSL Vulnerability that was published April 29, 2014, on the NCCIC/ICS-CERT web site. The OpenSSL Heartbleed vulnerability was independently identified by both Neel Mehta of...
Siemens RuggedCom ROX-based Devices Certificate Verification Vulnerability (Update A)
OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-14-135-03 Siemens RuggedCom ROX-Based Devices Certificate Verification Vulnerability that was published May 15, 2014, on the NCCIC/ICS-CERT web site. Siemens has reported to ICS-CERT an incorrect certificate...
Yokogawa Multiple Products Vulnerabilities
OVERVIEW Yokogawa reports that several buffer overflow vulnerabilities affect several of its products. Juan Vazquez of Rapid7 Inc.,Rapid7 Inc., http://www.rapid7.com, web site last accessed May 13, 2014. and independent researcher Julian Vilas Diaz reported to CERT/CC that they identified several...
Emerson DeltaV Vulnerabilities
OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on May 13, 2014, and is being released to the NCCIC/ICS-CERT web site. Emerson has identified two authorization vulnerabilities in the Emerson DeltaV application. These vulnerabilities were reported directly to...
Digi International OpenSSL Vulnerability
OVERVIEW Digi International has identified five products that are vulnerable to the OpenSSL Heartbleed bug. Digi International has produced downloadable firmware upgrade versions that mitigate this vulnerability. This vulnerability could be exploited remotely. Exploits that target this...
ABB Relion 650 Series OpenSSL Vulnerability (Update A)
OVERVIEW --------- Begin Update A Part 1 of 2-------- This updated advisory is a follow-up to the original advisory titled ICSA-14-126-01 ABB Relion 650 Series OpenSSL Vulnerability, that was published May 06, 2014, on the NCCIC/ICS-CERT web site. ABB has identified an OpenSSL vulnerability in it...
AMTELCO miSecure Vulnerabilities
OVERVIEW Researcher Jared Bird of Allina Health reported multiple vulnerabilities in the AMTELCO miSecureMessage MSM medical messaging system. AMTELCO has an update available to all customers that mitigates the vulnerabilities. The vulnerabilities were discovered during cooperative testing betwee...
Siemens SIMATIC S7-1200 CPU Web Vulnerabilities
OVERVIEW Siemens ProductCERT and Ralf Spenneberg, Hendrik Schwartke, and Maik Brüggemann from OpenSource Training have reported two vulnerabilities in the Siemens SIMATIC S7-1200 CPU family. Siemens has produced a new product release that mitigates these vulnerabilities. AFFECTED PRODUCTS The...
Certec atvise scada OpenSSL Heartbleed Vulnerability
OVERVIEW Researcher Bob Radvanovsky of Infracritical has notified NCCIC/ICS-CERT that Certec has released new libraries that mitigate the OpenSSL Heartbleed vulnerability in atvise scada. This vulnerability could be exploited remotely. Exploits that target the OpenSSL Heartbleed vulnerability are...
Mariposa Botnet
Overview ICS-CERT has received reports and investigated infections of the MariposaDefence Intelligence, http://defintel.com/docs/MariposaAnalysis.pdf, website last accessed March 15, 2010. botnet, which have affected the business networks of multiple control system owners in recent months. ICS-CE...
Siemens SINEMA Vulnerabilities
OVERVIEW Siemens has identified vulnerabilities in SINEMA server. Siemens has produced a software update that mitigates these vulnerabilities. These vulnerabilities could be exploited remotely. AFFECTED PRODUCTS The following Siemens product is affected: SINEMA server: all versions prior to V12 S...
InduSoft Web Studio Directory Traversal Vulnerability
OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on April 17, 2014, and is now being released to the NCCIC/ICS-CERT web site. ICS-CERT received a report from the Zero Day Initiative ZDI concerning a Directory Traversal vulnerability affecting the InduSoft Web Stud...
Progea Movicon SCADA Information Disclosure Vulnerability
OVERVIEW Celil Ünüver of SignalSEC Ltd. has identified an information disclosure vulnerability in the Progea Movicon application. Progea has produced a new version that mitigates this vulnerability. The researcher has tested the new version to validate that it resolves the vulnerability. This...
Innominate mGuard OpenSSL HeartBleed Vulnerability
OVERVIEW Researcher Bob Radvanovsky of Infracritical has notified NCCIC/ICS-CERT that Innominate has released a new firmware version that mitigates the OpenSSL HeartBleed vulnerability in the mGuard products. --------- Begin Update A Part 1 of 4 -------- Phoenix Contact branded devices are not...
Siemens Industrial Products OpenSSL Heartbleed Vulnerability (Update B)
OVERVIEW This updated advisory is a follow-up to the updated advisory titled ICSA-14-105-03A Siemens Industrial Products OpenSSL Heartbleed Vulnerability that was published April 29, 2014, on the NCCIC/ICS-CERT web site. Siemens reported to ICS-CERT a list of products affected by the OpenSSL...
IOServer Out of Bounds Read Vulnerability
OVERVIEW Chris Sistrunk of Mandiant and Adam Crain of Automatak have identified an out of bounds read vulnerability in IOServer’s OPC Server application. IOServer has released a new version that mitigates this vulnerability. The researchers have tested the new version to validate that it resolves...
Siemens Ruggedcom WIN Products BEAST Attack Vulnerability
OVERVIEW Siemens has identified a BEAST Browser Exploit Against SSL/TLS attack vulnerability in Siemens Ruggedcom WIN products. This vulnerability was originally reported directly to Siemens ProductCERT by Dan Frein and Paul Cotter of West Monroe Partners. Siemens has produced a firmware update...
WellinTech KingSCADA Stack-Based Buffer Overflow
OVERVIEW An anonymous researcher working with HP’s Zero Day Initiative has identified a stack-based buffer overflow in the WellinTech KingSCADA Stack. WellinTech has produced a patch that mitigates this vulnerability. This vulnerability could be exploited remotely. AFFECTED PRODUCTS The following...
OSIsoft PI Interface for DNP3 Improper Input Validation
OVERVIEW Adam Crain of Automatak and Chris Sistrunk, Sr. Consultant for Mandiant, have identified an improper input validation vulnerability in the OSIsoft PI Interface for DNP3 product. OSIsoft has produced an update that mitigates this vulnerability. OSIsoft and Automatak have tested the new...
USB Malware Targeting Siemens Control Software (Update C)
Overview VirusBlokAda, an antivirus vendor based in Belarus, announcedVirusBlokAda, http://www.anti-virus.by/en/tempo.shtml, website last visited July 15, 2010. the discovery of malware that uses a zero-day vulnerability in Microsoft Windows processing of shortcut files. The malware utilizes this...
Stuxnet Malware Mitigation (Update B)
Overview In July, ICS-CERT published an advisory and a series of updates regarding the Stuxnet malware entitled “ICSA-10-201 USB Malware Targeting Siemens Control Software.” Since then, ICS-CERT has continued analysis of the Stuxnet malware in an effort to determine more about its capabilities an...
Schneider Electric OPC Factory Server Buffer Overflow
OVERVIEW Researcher Wei Gao, formerly of IXIA, has identified a buffer overflow vulnerability in the Schneider Electric OPC Factory Server OFS application. Schneider Electric has produced a patch that mitigates this vulnerability. Wei Gao has tested the patch to validate that it resolves the...
Solar Magnetic Storm Impact on Control Systems
Overview The sun generates solar flare and coronal mass ejection CME events in an approximate 11-year cycle. The plasma clouds generated from these events have the potential to cause geomagnetic storms that can interfere with terrestrial communications and other electronic systems, posing a risk ...
Ecava IntegraXor Guest Account Information Disclosure Vulnerability
OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on April 1, 2014, and is now being released to the NCCIC/ICS-CERT web site. Independent researcher Andrea Micalizzi, aka rgod, has identified an information disclosure vulnerability in the Ecava IntegraXor...
Siemens CP 1604 and CP 1616 Improper Access Control
Overview This advisory provides mitigation details for a vulnerability that impacts the Siemens CP 1604 and CP 1616 communication modules. Siemens has identified a vulnerability in the debugging interface of the CP 1604 and CP 1616 communications modules. Independent researchers Christopher...
Siemens WinCC TIA Portal Vulnerabilities
Overview This advisory provides mitigation details for a vulnerability that impacts the Siemens WinCC TIA Totally Integrated Automation Portal HMI. Researchers Billy Rios and Terry McCorkle of Cylance; Gleb Gritsai, Sergey Bobrov, Roman Ilin, Artem Chaykin, Timur Yunusov, and Ilya Karpov from...
Siemens WinCC 7.0 SP3 Multiple Vulnerabilities
Overview This advisory provides mitigation details for vulnerabilities that impact the Siemens SIMATIC WinCC. Positive Technologies and Siemens ProductCERT have identified multiple vulnerabilities in the Siemens SIMATIC WinCC, which is used to configure SIMATIC operator devices. Siemens has...
Schweitzer Engineering Laboratories AcSELerator Improper Authorization Vulnerability
Overview This advisory provides mitigation details for a vulnerability affecting the Schweitzer Engineering Laboratories SEL AcSELerator QuickSet software. Independent researcher Michael Toecker of Digital Bond has identified an improper authorization vulnerability in the SEL AcSELerator...
Schneider Electric PLCs Vulnerabilities
OVERVIEW --------- Begin Update B Part 1 of 2 -------- This updated advisory is a follow-up to the previous advisory update titled ICSA-13-077-01A Schneider Electric PLCs Vulnerabilities Update A that was published March 20, 2013, on the ICS-CERT Web page. It is also a follow-up to the updated...
Invensys Wonderware Win-XML Exporter Improper Input Validation Vulnerability
Overview This advisory was originally posted to the US-CERT secure Portal library on March 08, 2013, and is now being released to the ICS-CERT Web page. This advisory provides mitigation details for a vulnerability that impacts the Invensys Wonderware Win-XML Exporter. Researchers Timur Yunusov,...
InduSoft Advantech Studio Directory Traversal
OVERVIEW This advisory is a follow-up to the alert titled ICS-ALERT-13-004-01—Advantech Studio Directory Traversal that was published January 4, 2013, on the ICS-CERT Web page. Independent researcher Nin3 released proof-of-concept PoC exploit code for a directory traversal vulnerability in Induso...
Honeywell EBI, SymmetrE, and ComfortPoint Open Manager Station
Overview This updated advisory is a follow-up to the original advisory titled ICSA-13-053-02--Honeywell Enterprise Buildings Integrator EBI, SymmetrE, and ComfortPoint Open Manager Station that was published February 22, 2013, on the ICS-CERT Web page. This advisory provides mitigation details fo...
Emerson DeltaV Uncontroller Resource Consumption Vulnerability
Overview This advisory was originally posted to the US-CERT secure portal library on February 22, 2013, and is now being released to the ICS-CERT Web page. This advisory provides mitigation details for a vulnerability that impacts the Emerson DeltaV MD and SD controllers. Independent researcher...
3S CODESYS Gateway-Server Vulnerabilities
Overview This updated advisory is a follow-up to the original advisory titled ICSA-13-050-01, 3S CODESYS Gateway-Server Vulnerabilities that was published February 19, 2013, on the ICS-CERT Web page. This updated advisory provides mitigation details for five vulnerabilities in the 3S-Smart Softwa...
Tridium NiagaraAX Directory Traversal Vulnerability
Overview This advisory provides mitigation details for a vulnerability in the Tridium NiagaraAX software. Independent researchers Billy Rios and Terry McCorkle discovered a directory traversal vulnerability in the Tridium NiagaraAX software product. They demonstrated that with a valid user accoun...
WellinTech KingView KingMess Buffer Overflow
Overview This updated advisory is a follow-up to the original advisory titled ICSA-13-043-02—WellinTech KingView KingMess Buffer Overflow that was published February 12, 2013, on the ICS-CERT Web page. This updated advisory provides mitigation details for a vulnerability that impacts the WellinTe...
Schneider Electric Accutech Manager Heap Overflow
Overview This advisory provides mitigation details for a vulnerability that impacts the Schneider Electric Accutech Manager. Independent researcher Aaron Portnoy of Exodus Intelligence has identified a heap-based buffer overflow vulnerability in Schneider Electric’s Accutech Manager application...
MOXA EDR-G903 Series Multiple Vulnerabilities
OVERVIEW This advisory provides mitigation details for vulnerabilities that impact Moxa EDR-G903 Series Routers. Independent researcher Neil Smith identified a hard-coded user account vulnerability and an insufficient entropy vulnerability in Moxa’s EDR-G903 series routers. By impersonating the...
360 Systems Image Server 2000 Series Remote Root Access
Overview This updated advisory is a follow-up to the original advisory titled ICSA-13-038-01—360 Systems Image Server 2000 Series Remote Root Access that was published March 06, 2013, on the ICS-CERT Web site. This advisory provides mitigation details for a vulnerability that impacts the 360...
Ecava IntegraXor ActiveX Buffer Overflow
Overview This advisory provides mitigation details for a vulnerability that impacts the Ecava IntegraXor application. Independent researcher Andrew Brooks has identified a buffer overflow vulnerability in Ecava’s IntegraXor application. Ecava has produced a patch that mitigates this vulnerability...
InduSoft ISSymbol ActiveX Control Buffer Overflow (Update A)
Overview Security researcher Dmitriy Pletnevo of Secunia ResearchSecunia Research, http://secunia.com/secuniaresearch/2011-36/, website last accessed June 16, 2011. has released details of multiple overflow vulnerabilities affecting the InduSoft ISSymbol ActiveX control. The researcher identified...
GE Intelligent Platforms Proficy Cimplicity Multiple Vulnerabilities
Overview This advisory provides mitigation details for multiple vulnerabilities that impact GE Intelligent Platforms Proficy HMI/SCADA—CIMPLICITY. General Electric GE has addressed two vulnerabilities in GE Intelligent Platforms Proficy HMI/SCADA—CIMPLICITY: a directory transversal vulnerability...
GE Proficy Real-Time Information Portal Information Disclosure Vulnerabilities
Overview This advisory provides mitigation details for multiple vulnerabilities that impact the GE Intelligent Platforms Proficy Real-Time Information Portal. General Electric GE has addressed two vulnerabilities in the GE Intelligent Platforms Proficy Real-Time Information Portal. Exploitation o...
Schneider Electric IGSS Buffer Overflow
Overview Independent researcher Aaron Portnoy of Exodus Intelligence has identified a buffer overflow vulnerability in Schneider Electric’s Interactive Graphical SCADA System IGSS application. Schneider Electric has produced a patch that fully resolves this vulnerability. Aaron Portnoy has...