Summary
This host is running Sielco Sistemi Winlog and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attacker to obtain sensitive information cause buffer overflow condition or execute arbitrary code under the context of the user.
Impact Level: System/Application
Solution
Upgrade to version 2.07.17 or higher,
For updates refer to http://www.sielcosistemi.com/en/products/winlog_scada_hmi
Insight
- Multiple errors in RunTime.exe and TCPIPS_Story.dll when processing a specially crafted packet sent to TCP port 46824.
- An input validation error when processing certain user supplied inputs allows attackers to write arbitrary files via directory traversal attacks.
Affected
Sielco Sistemi Winlog version 2.07.16 and prior
References
- http://aluigi.altervista.org/adv/winlog_2-adv.txt
- http://bot24.blogspot.in/2012/06/sielco-sistemi-winlog-20716-multiple.html
- http://secunia.com/advisories/49395
- http://www.exploit-db.com/exploits/19409
- http://www.osvdb.org/83275
- http://www.osvdb.org/83276
- http://www.osvdb.org/83309
- http://www.osvdb.org/83312
- http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-179-01.pdf
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2012-4353, CVE-2012-4354, CVE-2012-4355, CVE-2012-4356, CVE-2012-4357, CVE-2012-4358, CVE-2012-4359 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe AIR Multiple Vulnerabilities -01 Feb13 (Mac OS X)
- Adobe Air Multiple Vulnerabilities - October 12 (Mac OS X)
- Adobe Acrobat Multiple Vulnerabilities-01 Sep14 (Windows)
- Adobe Air Multiple Vulnerabilities - November12 (Mac OS X)
- Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Windows)