InduSoft.Web.Studio.InTouch.Edge.HMI.UniSoft.Buffer.Overflow
Description
This indicates an attack attempt against a stack-based Buffer Overflow vulnerability in InduSoft Web Studio and InTouch Edge HMI.
The vulnerability is due to insufficient boundary check in the application. An attacker can exploit this via a crafted request. Successful attacks may allow the attacker to execute arbitrary code in the context of the running application.
Affected Products
InduSoft Web Studio versions prior to 8.1 SP2
InTouch Edge HMI (formerly InTouch Machine Edition) versions prior to 2017 SP2
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec130.pdf
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |