Eaton’s Cooper Power Series Form 6 Control and Idea/IdeaPlus Relays with Ethernet

MITRE NVD CVE.ORG JSON API Print: PDF PDF

Summary

CVECVE-2014-9196
StatePUBLISHED
Assignericscert
Source PriorityCVE Program / NVD first with legacy fallback
Published2015-07-20 01:59:01 UTC
Updated2026-05-06 22:30:45 UTC
DescriptionEaton Cooper Power Systems ProView 4.0 and 5.0 before 5.0 11 on Form 6 controls and Idea and IdeaPLUS relays generates TCP initial sequence number (ISN) values linearly, which makes it easier for remote attackers to spoof TCP sessions by predicting an ISN value.

Risk And Classification

Primary CVSS: v2.0 9.3 from [email protected]

AV:N/AC:M/Au:N/C:C/I:C/A:C

Problem Types: CWE-342 | CWE-254 | CWE-342 CWE-342

VersionSourceTypeScoreSeverityVector
2.0[email protected]Primary9.3AV:N/AC:M/Au:N/C:C/I:C/A:C
2.0[email protected]Secondary7.6AV:N/AC:H/Au:N/C:C/I:C/A:C
2.0CNACVSS7.6AV:N/AC:H/Au:N/C:C/I:C/A:C

CVSS v2.0 Breakdown

Access Vector
Network
Access Complexity
Medium
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Application Eaton Proview 4.0 All All All
Application Eaton Proview 5.0 All All All
Application Eaton Proview 5.0.1 All All All
Application Eaton Proview 5.0.10 All All All
Application Eaton Proview 5.0.2 All All All
Application Eaton Proview 5.0.3 All All All
Application Eaton Proview 5.0.4 All All All
Application Eaton Proview 5.0.5 All All All
Application Eaton Proview 5.0.6 All All All
Application Eaton Proview 5.0.7 All All All
Application Eaton Proview 5.0.8 All All All
Application Eaton Proview 5.0.9 All All All

Vendor Declared Affected Products

SourceVendorProductVersionPlatforms
CNA Eatons Cooper Power Systems Series Form 6 affected Pro View 4.0 Pro View 5.0 custom Not specified
CNA Eatons Cooper Power Systems Idea/IdeaPLUS Relays affected Pro View 4.0 Pro View 5.0 custom Not specified

References

ReferenceSourceLinkTags
Eaton’s Cooper Power Series Form 6 Control and Idea/IdeaPlus Relays with Ethernet Vulnerability | ICS-CERT af854a3a-2127-422b-91ae-364da2661108 ics-cert.us-cert.gov Third Party Advisory, US Government Resource
Multiple Eaton Cooper Power Systems Products Man in The Middle Security Bypass Vulnerability af854a3a-2127-422b-91ae-364da2661108 www.securityfocus.com
www.cisa.gov/news-events/ics-advisories/icsa-15-006-01 [email protected] www.cisa.gov
www.eaton.com/cybersecurity [email protected] www.eaton.com
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Vendor Comments And Credit

Discovery Credit

CNA: Dr. Raheem Beyah, David Formby, and San Shin Jung of Georgia Tech, via a research project partially sponsored by the Georgia Tech National Electric Energy Testing Research and Applications Center (NEETRAC) (en)

Additional Advisory Data

Solutions

CNA: Eaton’s Cooper Power Systems division has developed ProView 5.0 Revision 11 software that mitigates this vulnerability, and the Form 6 control version was released on June 12, 2015. Idea/IdeaPLUS relay ProView software versions began to be posted on June 30, 2015. ProView 5.0 Revision 11 will be compatible with any hardware and firmware Versions 5.0 and higher. Versions below 5.0 may be updated with the appropriate and corresponding hardware upgrades. Information on how to obtain and install these available remedies is available at: http://www.cooperindustries.com/content/public/en/power_systems/resources/securitysupport.html For additional technical information, please contact Eaton’s Cooper Power Systems at: https://www.eaton.com/cybersecurity

Workarounds

CNA: No authentication mechanism was used for new socket connections to SCADA protocol listening ports on the Form 6 control and Idea/IdeaPLUS relays. The effects of exploiting this vulnerability are the same as the effects of an attacker connecting directly to the control or network and listening for or initiating a new session, without exploiting any vulnerabilities. This underscores the importance of deploying network segmentation and isolation on the control system network. By ensuring that controls are not accessible from external networks and that appropriate physical security measures are provided at network access points, risks associated with this vulnerability are greatly minimized. Eaton’s Cooper Power Systems recommends that asset owners using these products take the proper steps to ensure system wide defense-in-depth strategies, as outlined in Eaton’s whitepaper WP152002EN. This whitepaper can be downloaded at: https://www.eaton.com/content/dam/eaton/products/industrialcontrols-drives-automation-sensors/c441-motor-insight-motor-protection-relays/cyber-security-white-paper-wp152002en.pdf

© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report