Schneider.Electric.ClearSCADA.OPF.File.Parsing.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a remote Code Execution vulnerability in Schneider Electric ClearSCADA.
The vulnerability is caused by an error that occurs when the vulnerable software handles a malicious OPF file. A remote attacker may exploit this to execute arbitrary code via a crafted OPF file.

affected-products-logoAffected Products

Schneider Electric ClearSCADA 2010 R2
Schneider Electric ClearSCADA 2010 R2.1
Schneider Electric ClearSCADA 2010 R3
Schneider Electric ClearSCADA 2010 R3.1
Schneider Electric SCADA Expert ClearSCADA 2013 R1
Schneider Electric SCADA Expert ClearSCADA 2013 R1.1
Schneider Electric SCADA Expert ClearSCADA 2013 R1.1a
Schneider Electric SCADA Expert ClearSCADA 2013 R1.2
Schneider Electric SCADA Expert ClearSCADA 2013 R2

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary codes within the context of the logged in user

recomended-action-logoRecommended Actions

Refer to the vendor's website for suggested workaround
http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-024-01

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)