Wonderware vulnerability patch posted
There is a buffer overflow vulnerability in the Wonderware InBatch and I/A Series Batch software products (all supported versions), according to the Industrial Control System Cyber Emergency Response Team (ICS-CERT).
There is a buffer overflow vulnerability in the Wonderware InBatch and I/A Series Batch software products (all supported versions), according to the Industrial Control System Cyber Emergency Response Team (ICS-CERT).
The service listening on TCP Port 9001 is vulnerable to a buffer overflow that could cause denial of service (DoS) or the possible execution of arbitrary code, according to an independent security researcher’s report. This vulnerability is remotely exploitable and exploit code is publicly available.
Read the full-length article here.
- Related News:
Wind farm online after rotor crash - 24.03.2011 10:16- U.S. nuke design could help Japan - 24.03.2011 10:15
- Refinery faces fines over safety issues - 24.03.2011 10:14
- PG+E created own pipeline safety rule - 24.03.2011 10:13
- Crew feared pipeline pressure - 24.03.2011 10:12
- Walkie Talkie shuts nuke plant safety system - 24.03.2011 10:11
- Cyber task force eyes power grid - 24.03.2011 10:10
- Antivirus tools no match for different attack vectors - 24.03.2011 10:09
- Malware report: Learn from past attacks - 24.03.2011 10:08
- Hackers get hacked - 24.03.2011 10:07
- RSA hit by cyber attack - 24.03.2011 10:06
- More SCADA vulnerabilities found - 24.03.2011 10:05
- Stuxnet report V: Security culture needs work - 24.03.2011 10:03
- Stuxnet report IV: Worm slithers in - 24.03.2011 10:02
- Stuxnet report III: Worm selects site - 24.03.2011 10:01
Integrator Guide
| Search the online Automation Integrator Guide |
|
|
|
|
Visit the System Integrators page to view past winners of Control Engineering's System Integrator of the Year Award and learn how to enter the competition. You will also find more information on system integrators and Control System Integrators Association.
Case Study Database
Get more exposure for your case study by uploading it to the Control Engineering case study database, where end-users can identify relevant solutions and explore what the experts are doing to effectively implement a variety of technology and productivity related projects.
These case studies provide examples of how knowledgeable solution providers have used technology, processes and people to create effective and successful implementations in real-world situations. Case studies can be completed by filling out a simple online form where you can outline the project title, abstract, and full story in 1500 words or less; upload photos, videos and a logo.
Click here to visit the Case Study Database and upload your case study.