7T Interactive Graphical SCADA System 'dc.exe' Command Injection Vulnerability Network Vulnerability

Summary

This host is installed with 7T Interactive Graphical SCADA System and is prone to remote command execution vulnerability.

Impact

Successful exploitation will allow remote attackers to traverse directory and execute arbitrary commands. Impact Level: Application

Solution

Upgrade to version 9.00.00.11083 or higher, For updates refer www.igss.com

Insight

Flaw is due to dc.exe not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 0xa and 0x17 opcodes.

Affected

Interactive Graphical SCADA System dc.exe <= 9.00.00.11059

Detection

Send a crafted request via and check whether it is able to execute the command remotely.

References

http://aluigi.altervista.org/adv/igss_8-adv.txt
http://www.exploit-db.com/exploits/17024
http://www.exploit-db.com/exploits/29129
https://ics-cert.us-cert.gov/alerts/ICS-ALERT-11-080-03

Updated on 2017-03-28

Severity

Classification

CVE CVE-2011-1566

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Cogent DataHub Multiple Vulnerabilities
7-Zip Unspecified Archive Handling Vulnerability (Linux)
Abyss httpd crash
Asterisk PBX SDP Header Overflow Vulnerability
Asterisk PBX NULL Pointer Dereference Overflow

Take action and discover your vulnerabilities