Schneider.Electric.ClearSCADA.OPF.File.Parsing.Code.Execution
Description
This indicates an attack attempt to exploit a remote Code Execution vulnerability in Schneider Electric ClearSCADA.
The vulnerability is caused by an error that occurs when the vulnerable software handles a malicious OPF file. A remote attacker may exploit this to execute arbitrary code via a crafted OPF file.
Affected Products
Schneider Electric ClearSCADA 2010 R2
Schneider Electric ClearSCADA 2010 R2.1
Schneider Electric ClearSCADA 2010 R3
Schneider Electric ClearSCADA 2010 R3.1
Schneider Electric SCADA Expert ClearSCADA 2013 R1
Schneider Electric SCADA Expert ClearSCADA 2013 R1.1
Schneider Electric SCADA Expert ClearSCADA 2013 R1.1a
Schneider Electric SCADA Expert ClearSCADA 2013 R1.2
Schneider Electric SCADA Expert ClearSCADA 2013 R2
Impact
System Compromise: Remote attackers can execute arbitrary codes within the context of the logged in user
Recommended Actions
Refer to the vendor's website for suggested workaround
http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-024-01
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |