2017

View all on this date written articles further down below.
28 Oct 2017

[ICS] Progea Movicon SCADA/HMI Vulnerabilities

Vendor: Progea
Equipment: Movicon SCADA/HMI
Vulnerability: Uncontrolled Search Path Element, Unquoted Search Path or Element

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-290-01

CVE-ID
CVE-2017-14017
CVE-2017-14019

AFFECTED PRODUCTS
The following versions of Movicon HMI, an HMI software platform, are affected:

  • Movicon Version 11.5.1181 and prior.

 

IMPACT
Successful exploitation of these vulnerabilities could allow privilege escalation or arbitrary code execution.

Read on for details.

Read more

28 Oct 2017

[ICS] JanTek JTC-200 RS232-NET Converter Advisory Published

Vendor: JanTek
Equipment: JTC-200
Vulnerabilities: Cross-site Request Forgery, Improper Authentication

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-283-02

CVE-ID
CVE-2016-5789
CVE-2016-5791

AFFECTED PRODUCTS

The following versions of JTC-200, a TCP/IP converter, are affected:

  • JTC-200 all versions.


IMPACT

Successful exploitation of these vulnerabilities could allow for remote code execution on the device with elevated privileges.

Read on for details.

Read more

28 Oct 2017

[ICS] SpiderControl SCADA Web Server Improper Privilege Management Vulnerability

Vendor: SpiderControl
Equipment: SCADA Web Server
Vulnerability: Improper Privilege Management

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-250-01

CVE-ID
CVE-2017-12728

AFFECTED PRODUCTS

The following versions of SCADA Web Server, a software management platform, are affected:
SCADA Web Server Version 2.02.0007 and prior.

IMPACT
Successful exploitation of this vulnerability could allow authenticated system users to escalate their privileges under certain conditions.

Read on for details.

Read more

28 Oct 2017

[ICS] mySCADA myPRO Unquoted Search Path Vulnerability

Vendor: mySCADA
Equipment: myPRO
Vulnerability: Unquoted Search Path

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-255-01

CVE-ID
CVE-2017-12694

AFFECTED PRODUCTS
The following versions of myPRO, an HMI/SCADA management platform, are affected:

  • myPRO Versions 7.0.26 and prior.


IMPACT

Successful exploitation of this vulnerability may allow an authenticated, but non-privileged, local user to execute arbitrary code with elevated privileges.

Read on for details.

Read more

01 Sep 2017

[ICS] SpiderControl SCADA Web Server – Directory Traversal Vulnerability

Vendor: SpiderControl
Equipment: SCADA Web Server
Vulnerability: Directory Traversal

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-234-03

ZDI Advisory:
http://www.zerodayinitiative.com/advisories/ZDI-17-695

CVE-ID
CVE-2017-12694

AFFECTED PRODUCTS
The following versions of SpiderControl SCADA Web Server, a software management platform, are affected:

  • SCADA Web Server < version 2.02.0100


IMPACT

Successful exploitation of this vulnerability allows an attacker to gain read access to system files through directory traversal.

Read on for details.

Read more

01 Sep 2017

[ICS] Schneider Electric Trio TView – vulnerable JRE versions in use

Vendor: Schneider Electric
Equipment: Trio TView
Vulnerabilities: Multiple Vulnerabilities for Java Runtime Environment

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-213-02

Schneider Electric Advisory
http://www.schneider-electric.com/en/download/document/SEVD-2017-199-01/

AFFECTED PRODUCTS


The following versions of Schneider Electric Trio TView, a management and diagnostics software, are affected:

  • Trio TView Software, TBUMPROG-TVIEW, Version 3.27.0 and prior.

Fixed in TView Version 3.29.0.

IMPACT
Exploitation of these vulnerabilities may allow a remote attacker to compromise the Trio TView Management Suite.

Read on for details.

Read more

01 Sep 2017

[ICS] Moxa SoftNVR-IA Live Viewer – Insecure Library Loading Allows Code Execution

Vendor: Moxa
Equipment: SoftNVR-IA Live Viewer
Vulnerability: Uncontrolled Search Path Element

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-220-02

CVE-ID
CVE-2017-5170

AFFECTED PRODUCTS
The following versions of SoftNVR-IA Live Viewer, a video surveillance software designed for industrial automation systems, are affected:

  • SoftNVR-IA Live Viewer, Version 3.30.3122 and prior versions

IMPACT
Successful exploitation of this vulnerability may allow an attacker to execute code from a malicious DLL on the affected system with the same privileges as the user running the program.

Read on for details.

Read more

01 Sep 2017

[ICS] SpiderControl SCADA MicroBrowser – Stack Buffer Overflow

Vendor: SpiderControl
Equipment: SCADA MicroBrowser
Vulnerability: Stack-based Buffer Overflow

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-234-02

ZDI Advisory
http://www.zerodayinitiative.com/advisories/ZDI-17-694/

CVE-ID
CVE-2017-12707

AFFECTED PRODUCTS
The following versions of SCADA MicroBrowser, a software management platform, are affected:

  • SCADA MicroBrowser Versions 1.6.30.144 and prior.

IMPACT

Successful exploitation of this vulnerability could allow an attacker to gain access to the system, manipulate system files, and potentially render the system unavailable.

Read on for details.

Read more

01 Sep 2017

[ICS] Solar Controls WATTConfig M Software – Insecure Library Loading Allows Code Execution

Vendor: Solar Controls
Equipment: WATTConfig M Software
Vulnerability: Uncontrolled Search Path Element

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-222-03

CVE-ID
CVE-2017-9648

AFFECTED PRODUCTS
The following versions of Solar Controls’ WATTConfig M Software for Windows 2.5.10 for M SSR/MAX PLCs are affected:

  • WATTConfig M Software, Version 2.5.10.1 and prior.

IMPACT
Successful exploitation of this vulnerability may allow arbitrary code execution.

Read on for details.

Read more

01 Sep 2017

[ICS] SIMPlight SCADA software – Insecure Library Loading Allows Code Execution

Vendor: SIMPlight
Equipment: SCADA Software
Vulnerability: Uncontrolled Search Path Element

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-222-01

CVE-ID
CVE-2017-9661

AFFECTED PRODUCTS
The following versions of SIMPlight SCADA software, software for building management systems and automated facilities, are affected:

  • SCADA Software version 4.3.0.27 and prior.

IMPACT
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code.

Read on for details.

Read more