virus logo Intrusion Prevention

Schneider.Electric.Interactive.Graphical.SCADA.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a Buffer Overflow vulnerability in Schneider Electric's Interactive Graphical SCADA System (IGSS) application.
The vulnerability is caused by an integer underflow, in which leads to stack buffer overflow, when processing crafted input from ports 12397/TCP and 12399/TCP. It allows a remote attacker to gain control of the vulnerable system.

affected-products-logoAffected Products

Schneider Electric Interactive Graphical SCADA System 10.x
Schneider Electric Interactive Graphical SCADA System 9.x

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www2.schneider-electric.com/corporate/en/support/cybersecurity/viewer-news.page?c_filepath=/
templatedata/Content/News/data/en/local/cybersecurity/general_information/2013/01/
20130110_advisory_of_vulnerability_affecting_igss_scada_software.xml

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

ICSA-13-018-01
ID 34545
Created Feb 13, 2013
Updated May 04, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2013-0657
Exploit Prediction Score 70.11%
Default Action drop
Active
Affected OS Windows
Affected App SCADA