Release date: 2011-09-08
Updated on: 2011-09-09
Affected Systems:
Procyon SCADA 1.x
Description:
--------------------------------------------------------------------------------
Cve id: CVE-2011-3322
The Procyon SCADA Core Service has a buffer overflow vulnerability. Remote attackers can exploit this vulnerability to control affected systems.
This vulnerability is caused by a boundary error in Core service (Coreservice.exe) when processing a "LOGON" request. Buffer overflow is caused by a long string sent to TCP 23.
<* Source: Knud H & oslash; jgaard
Link: http://secunia.com/advisories/45866/
Http://www.uscert.gov/control_systems/pdf/ICSA-11-216-01.pdf
Http://www.stratsec.net/Research/Advisories/Procyon-Core-Server-HMI-Remote-Stack-Overflow
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Procyon SCADA
-------------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Www. scadatec. co. uk/procyon_scada.html