Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 SCADA:CIP-UNAUTH-CMDEXEC

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 SCADA

Keywords

 EtherNet/IP CIP Unauthorized Command Execution

Release Date

 2013/03/01

Update Number

 2240

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SCADA: EtherNet/IP CIP Unauthorized Command Execution


This signature detects malicious EtherNet/IP CIP commands sent to a SCADA PLC device. Such commands allow an unauthorized, remote attacker to shutdown or reset PLC CPU and ethernet interface, causing abnormal service disruption.

References

  • URL: http://www.digitalbond.com/tools/basecamp/metasploit-modules/

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out