ABB.MicroSCADA.Wserver.Command.Execution
Description
This indicates an attack attempt to exploit a Remote Code Execution vulnerability in the Wserver component of ABB MicroSCADA.
The vulnerability is due to a design flaw when the vulnerable software handles user controlled data. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted request.
Affected Products
ABB MicroSCADA Prior to 9.3 FP2 Hotfix 2
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://www05.abb.com/global/scot/scot229.nsf/veritydisplay/41ccfa8ccd0431e6c1257c1200395574/$file/ABB_SoftwareVulnerabilityHandlingAdvisory_ABB-VU-PSAC-1MRS235805.pdf
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |