Signature Detail
Short Name |
SCADA:DATAC-REALWIN-MULT-BOF |
|---|---|
Severity |
Critical |
Recommended |
No |
Recommended Action |
Drop |
Category |
SCADA |
Keywords |
DATAC RealWin SCADA Server Multiple Buffer Overflow Vulnerabilities |
Release Date |
2011/04/07 |
Update Number |
1898 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SCADA: DATAC RealWin SCADA Server Multiple Buffer Overflow Vulnerabilities
This signature detects attempts to exploit a known multiple buffer overflow vulnerabilityiesin the DATAC RealWin SCADA Server. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
DATAC RealWin is prone to multiple remote buffer-overflow vulnerabilities because of a failure to properly bounds check user-supplied input. Attackers can leverage these issues to execute arbitrary code in the context of the application. Failed exploit attempts will cause a denial-of-service condition. DATAC RealWin versions 2.1 and prior are vulnerable; other versions may also be affected.
Affected Products
- DATAC Control International RealWin SCADA Server 1.06
- DATAC Control International RealWin SCADA Server 2.0
- DATAC Control International RealWin SCADA Server 2.1
- DATAC Control International RealWin SCADA Server 2.1.10
- DATAC Control International RealWin SCADA Server 2.1 (Build 6.1.10.10)
References
- BugTraq: 46937
- CVE: CVE-2011-1564
- CVE: CVE-2011-1563
- URL: http://aluigi.org/adv/realwin_4-adv.txt
- URL: http://aluigi.org/adv/realwin_5-adv.txt
- URL: http://aluigi.org/adv/realwin_6-adv.txt
- URL: http://aluigi.org/adv/realwin_7-adv.txt
- URL: http://aluigi.org/adv/realwin_8-adv.txt
- URL: http://www.dataconline.com/software/realwin.php
- URL: http://aluigi.org/adv/realwin_2-adv.txt
- URL: http://aluigi.org/adv/realwin_3-adv.txt