The IEC870IP driver for AVEVA’s Vijeo Citect, Citect SCADA, and Schneider Electric’s Power SCADA Operation has a buffer overflow that could result in a server-side crash. End Update B Part 3 of 5 - 4.2 VULNERABILITY OVERVIEW 4.2.1 STACK-BASED BUFFER OVERFLOW CWE-121 The following versions of the IEC870IP driver used in AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation are affected: The IEC870IP driver for AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation has a buffer overflow vulnerability that could result in a server-side crash.
This updated advisory is a follow-up to the original advisory titled “ICSA-19-290-01 AVEVA Vijeo Citect and Citect SCADA” that was published October 17, 2019, on the ICS webpage on. Vulnerability: Stack-based Buffer Overflow.Equipment: AVEVA’s Vijeo Citect and Citect SCADA Schneider Electric’s Power SCADA Operation.ATTENTION: Exploitable remotely/low skill level to exploit.
0 kommentar(er)
