security advisory

[ICS] BLF-Tech LLC VisualView HMI Software – Insecure Library Loading Allows Code Execution

[ICS] BLF-Tech LLC VisualView HMI Software – Insecure Library Loading Allows Code Execution

Vendor: BLF-Tech LLC
Equipment: VisualView HMI Software
Vulnerability: DLL Hijacking

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-17-115-01

AFFECTED PRODUCTS
The following VisualView HMI versions are affected:

IMPACT
An attacker who exploits this vulnerability may be able to remotely execute arbitrary code.

VULNERABILITY OVERVIEW
UNCONTROLLED SEARCH PATH ELEMENT CWE-427
The uncontrolled search path element vulnerability has been identified, which may allow an attacker to run a malicious DLL file within the search path resulting in execution of arbitrary code.

CVE-2017-6051 has been assigned to this vulnerability. A CVSS v3 base score of 7.0 has been assigned; the CVSS vector string is (AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).

Missing Libraries:

Application Executables (that look for missing DLL):

Steps to reproduce

+++++

Leave a Reply

Your email address will not be published. Required fields are marked *