RealWin SCADA System Buffer Overflow Vulnerabilities

Summary
This host is running RealWin SCADA system and is prone to buffer overflow vulnerabilities.
Impact
Successful exploitation may allow remote attackers to execute arbitrary code on the system or cause a denial of service condition. Impact Level: Application
Solution
Upgrade to RealWin SCADA System version 2.1 Build 6.1.10.10
Insight
The flaws are due to a boundary errors when processing 'SCPC_INITIALIZE', 'SCPC_INITIALIZE_RF' and 'SCPC_TXTEVENT' packets that can be exploited to cause a stack-based buffer overflow by sending specially crafted packets to port 912/TCP.
Affected
RealWin SCADA System 2.0 Build 6.1.8.10 and prior.
References