Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:MISC:CLEARSCADA-OPF-PARSE |
|---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Schneider Electric ClearSCADA OPF File Parsing Out of Bounds Array Indexing |
Release Date |
2014/05/02 |
Update Number |
2371 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: Schneider Electric ClearSCADA OPF File Parsing Out of Bounds Array Indexing
This signature detects attempts to exploit a known vulnerability in Schneider Electric ClearSCADA. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the user.
Extended Description
The PLC driver in ServerMain.exe in the Kepware KepServerEX 4 component in Schneider Electric StruxureWare SCADA Expert ClearSCADA 2010 R2 build 71.4165, 2010 R2.1 build 71.4325, 2010 R3 build 72.4560, 2010 R3.1 build 72.4644, 2013 R1 build 73.4729, 2013 R1.1 build 73.4832, 2013 R1.1a build 73.4903, 2013 R1.2 build 73.4955, and 2013 R2 build 74.5094 allows remote attackers to cause a denial of service (application crash) via a crafted OPF file (aka project file).
Affected Products
- Aveva clearscada 2010
- Aveva clearscada 2013
References
- CVE: CVE-2014-0779