tailieunhanh - ICS-CERT ADVISORY: ICSA-13-018-01—SCHNEIDER ELECTRIC IGSS BUFFER OVERFLOW

The best mitigation for this vulnerability is applying the appropriate vendor-supplied patch listed in the footnotes below. Schneider Electric has issued two patches for versions V9e and V10f If this vulnerability is not mitigated, a remote attacker could cause a buffer overflow and allow malicious code to be executed with administrator privileges. of the IGSS software to address this vulnerability. These patches are available from the Schneider Electric Web site or directly from the links in this advisory. Aaron Portnoy of Exodus Intelligence has validated the patches. Users of this software with older versions should upgrade their software or employ other mitigation methods | ics-cert INDUSTRIAL CONTROL SYSTEMS CYBER EMERGENCY RESPONSE TEAM X Vr ICS-CERT ADVISORY ICSA-13-018-01 SCHNEIDER ELECTRIC IGSS BUFFER OVERFLOW January 18 2013 OVERVIEW Independent researcher Aaron Portnoy of Exodus Intelligence has identified a buffer overflow vulnerability in Schneider Electric s Interactive Graphical SCADA System IGSS application. Schneider Electric has produced a patch that fully resolves this vulnerability. Aaron Portnoy has validated this patch. This vulnerability could be exploited remotely. AFFECTED PRODUCTS The Schneider Electric products affected IGSS application all versions. IMPACT An exploit of this vulnerability could result in a buffer overflow that could possibly allow an attacker to execute code under administrator credentials. IGSS is employed in many sectors including renewable energy process control monitoring and control motor controls lighting controls electrical distribution and security systems. Impact to individual organizations depends on many factors that are unique to each organization. ICS-CERT recommends that organizations evaluate the impact of this vulnerability based on their operational environment architecture and product implementation. BACKGROUND Schneider Electric is a US-based company that maintains offices in 190 countries worldwide. Their products address various markets including renewable energy process control monitoring and control motor controls lighting controls electrical distribution and security systems. This product is provided subject only to the Notification Section as indicated here http privacy ICS-CERT Advisory ICSA-13-018-01 Page 1 of 5 IGSS is a desktop application that is used to integrate industrial control system ICS components from diverse vendors using diverse sets of protocols and integrate their configuration and monitoring functions using IGSS as a single supervisory or human-machine interface HMI system. This software is employed worldwide in a broad range of .