| ID | 52470 |
| Created | Jan 03, 2023 |
| Updated | Jan 18, 2023 |
| Severity |
|
| Coverage |
IPS (Regular DB)
IPS (Extended DB)
|
| Default Action | drop |
| Active |
|
| Affected OS | Windows |
| Affected App | SCADA |
Legend
| Active/Available |
|
| InActive/Not Available |
|
Update History
| Date | Version | Detail |
|---|---|---|
| 2023-01-24 | 22.482 | Default_action:pass:drop |
| 2023-01-17 | 22.477 | Modified |
| 2023-01-05 | 22.470 |
Refine Search
Threat Encyclopedia
SE.IGSS.IGSSdataServer.exe.Opcode.6.Out.Of.Bounds.Write
Description
This indicates an attack attempt to exploit an Out of Bound Write Vulnerability in Schneider Electric IGSS.
This vulnerability is due to an out-of-bounds write when processing Opcode 5 (ONL) messages sent to the IGSSDataServer.exe process. A remote, unauthenticated attacker could exploit this vulnerability by sending a maliciously crafted packet to the target service. Successful exploitation could allow the attacker to potentially execute arbitrary code on the target system in the context of the IGSSDataServer process.
Affected Products
Schneider Electric IGSS prior to 15.0.0.22170
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://download.schneider-electric.com/files?p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-165-01_IGSS_Security_Notification_V2.pdf&_ga=2.129523276.1599405415.1656080787-643358291.1655388168
