Summary
This host is running Sielco Sistemi Winlog and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attacker to obtain sensitive information cause buffer overflow condition or execute arbitrary code under the context of the user.
Impact Level: System/Application
Solution
Upgrade to version 2.07.17 or higher,
For updates refer to http://www.sielcosistemi.com/en/products/winlog_scada_hmi
Insight
- Multiple errors in RunTime.exe and TCPIPS_Story.dll when processing a specially crafted packet sent to TCP port 46824.
- An input validation error when processing certain user supplied inputs allows attackers to write arbitrary files via directory traversal attacks.
Affected
Sielco Sistemi Winlog version 2.07.16 and prior
References
- http://aluigi.altervista.org/adv/winlog_2-adv.txt
- http://bot24.blogspot.in/2012/06/sielco-sistemi-winlog-20716-multiple.html
- http://secunia.com/advisories/49395
- http://www.exploit-db.com/exploits/19409
- http://www.osvdb.org/83275
- http://www.osvdb.org/83276
- http://www.osvdb.org/83309
- http://www.osvdb.org/83312
- http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-179-01.pdf
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2012-4353, CVE-2012-4354, CVE-2012-4355, CVE-2012-4356, CVE-2012-4357, CVE-2012-4358, CVE-2012-4359 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat and Reader PDF Handling Multiple Vulnerabilities (Windows)
- Adobe Air Multiple Vulnerabilities -01 August 12 (Windows)
- Adobe Acrobat Multiple Vulnerabilities - 01 Jan14 (Mac OS X)
- Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Windows)
- Adobe Flash Media Server Multiple Remote Security Vulnerabilities