Signature Detail
Short Name |
SCADA:DATAC-REALWIN-OF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
SCADA |
Keywords |
DATAC RealWIn Multiple Buffer Overflows |
Release Date |
2011/01/12 |
Update Number |
1847 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SCADA: DATAC RealWIn Multiple Buffer Overflows
This signature detects attempts to exploit a known vulnerability in the DATAC Control International RealWin SCADA Server 2.0. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
DATAC RealWin is prone to multiple remote buffer-overflow vulnerabilities that affect the HMI service. Attackers can leverage these issues to execute arbitrary code in the context of the application. Failed exploit attempts will cause a denial-of-service condition. DATAC RealWin versions 2.0 and prior are vulnerable; other versions may also be affected.
Affected Products
- DATAC Control International RealWin SCADA Server 1.06
- DATAC Control International RealWin SCADA Server 2.0
References
- BugTraq: 44150
- CVE: CVE-2010-4142
- URL: http://www.kb.cert.org/vuls/id/222657
- URL: http://www.dataconline.com/software/realwin.php
- URL: http://www.realflex.com