CVSS: 6.8EPSS: 24%CPEs: 9EXPL: 0CVE-2014-0779 – Schneider-Electric ClearSCADA ServerMain.exe OPF File Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-0779
The PLC driver in ServerMain.exe in the Kepware KepServerEX 4 component in Schneider Electric StruxureWare SCADA Expert ClearSCADA 2010 R2 build 71.4165, 2010 R2.1 build 71.4325, 2010 R3 build 72.4560, 2010 R3.1 build 72.4644, 2013 R1 build 73.4729, 2013 R1.1 build 73.4832, 2013 R1.1a build 73.4903, 2013 R1.2 build 73.4955, and 2013 R2 build 74.5094 allows remote attackers to cause a denial of service (application crash) via a crafted OPF file (aka project file). El controlador PLC en ServerMain.exe en el componente Kepware KepServerEX 4 en Schneider Electric StruxureWare SCADA Expert ClearSCADA 2010 R2 build 71.4165, 2010 R2.1 build 71.4325, 2010 R3 build 72.4560, 2010 R3.1 build 72.4644, 2013 R1 build 73.4729, 2013 R1.1 build 73.4832, 2013 R1.1a build 73.4903, 2013 R1.2 build 73.4955 y 2013 R2 build 74.5094 permite a atacantes remotos causar una denegación de servicio (caída de aplicación) a través de un archivo OPF manipulado (también conocido como archivo de proyecto). This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider-Electric ClearSCADA. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of OPF files. The issue lies in a failure to validate a length specifier before using it as an index into an array. • http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-024-01 http://ics-cert.us-cert.gov/advisories/ICSA-14-072-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 8EXPL: 0CVE-2013-6142
https://notcve.org/view.php?id=CVE-2013-6142
DNP3Driver.exe in the DNP3 driver in Schneider Electric ClearSCADA 2010 R2 through 2010 R3.1 and SCADA Expert ClearSCADA 2013 R1 through 2013 R1.2 allows remote attackers to cause a denial of service (resource consumption) via IP packets containing errors that trigger event-journal messages. DNP3Driver.exe en el controlador DNP3 en Schneider Electric ClearSCADA 2010 R2 hasta 2010 R3.1 y SCADA Expert ClearSCADA 2013 R1 a 2013 R1.2, permite a atacantes remotos provocar una denegación de servicio (consumo de recursos) a través de paquetes IP que contienen errores que desencadenan mensajes event-journal • http://ics-cert.us-cert.gov/advisories/ICSA-14-014-01 • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 8%CPEs: 5EXPL: 0CVE-2011-3143
https://notcve.org/view.php?id=CVE-2011-3143
Use-after-free vulnerability in Control Microsystems ClearSCADA 2005, 2007, and 2009 before R2.3 and R1.4, as used in SCX before 67 R4.5 and 68 R3.9, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified long strings that trigger heap memory corruption. Vulnerabilidad de tipo "usar-después-de-liberar" en Control Microsystems ClearSCADA 2005, 2007 y 2009 anteriores a R2.3 y R1.4, tal como se usa en SCX anteriores a 67 R4.5 y 68 R3.9, permite a atacantes remotos provocar una denegación de servicio (caída) y posiblemente ejecutar código arbitrario a través de cadenas de texto extensas que provocan una corrupción de memoria dinámica ("heap"). • http://secunia.com/advisories/44955 http://www.digitalbond.com/scadapedia/vulnerability-notes/heap-overflow-vulnerability http://www.osvdb.org/72989 http://www.securityfocus.com/bid/46312 http://www.us-cert.gov/control_systems/pdf/ICSA-10-314-01.pdf http://www.us-cert.gov/control_systems/pdf/ICSA-10-314-01A.pdf • CWE-399: Resource Management Errors •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2011-3144
https://notcve.org/view.php?id=CVE-2011-3144
Cross-site scripting (XSS) vulnerability in Control Microsystems ClearSCADA 2005, 2007, and 2009 before R2.3 and R1.4, as used in SCX before 67 R4.5 and 68 R3.9, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Control Microsystems ClearSCADA 2005, 2007 y 2009 en versiones anteriores a la R2.3 y R1.4, como se utiliza en SCX anteriores a 67 R4.5 y 68 R3.9, permite a usuarios remotos inyectar codigo de script web o código HTML de su elección a través de vectores sin especificar. • http://secunia.com/advisories/44955 http://www.digitalbond.com/scadapedia/vulnerability-notes/control-microsystems-cross-site-scripting-vulnerability http://www.osvdb.org/72987 http://www.us-cert.gov/control_systems/pdf/ICSA-10-314-01.pdf http://www.us-cert.gov/control_systems/pdf/ICSA-10-314-01A.pdf • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •