7-Technologies Interactive Graphical SCADA System Data Server Remote Denial of Service Vulnerability

Bugtraq ID:	51146
Class:	Boundary Condition Error
CVE:	CVE-2011-4050
Remote:	Yes
Local:	No
Published:	Dec 20 2011 12:00AM
Updated:	Dec 20 2011 12:00AM
Credit:	ICS-CERT credits UCQ, Cyber Defense Institute, Inc.
Vulnerable:	7-Technologies Interactive Graphical SCADA System 9.0.0.11200
Not Vulnerable:

7-Technologies Interactive Graphical SCADA System Data Server Remote Denial of Service Vulnerability

7-Technologies Interactive Graphical SCADA System is prone to a remote denial-of-service vulnerability.

Attackers can exploit this issue to crash the application, denying service to legitimate users.

7-Technologies Interactive Graphical SCADA System 9.0.0.11200 is affected; other versions may also be vulnerable.

7-Technologies Interactive Graphical SCADA System Data Server Remote Denial of Service Vulnerability

Currently we are not aware of publicly available exploits. If you feel we are in error or if you are aware of more recent information please mail us at: [email protected].

7-Technologies Interactive Graphical SCADA System Data Server Remote Denial of Service Vulnerability

Solution:
Updates are available. Please see the references for more information.


7-Technologies Interactive Graphical SCADA System 9.0.0.11200

• 7-Technologies progupdatesv90.zip
  http://www.7t.dk/igss/igssupdates/v90/progupdatesv90.zip

7-Technologies Interactive Graphical SCADA System Data Server Remote Denial of Service Vulnerability

References:

• IGSS - Interactive Graphical SCADA System Homepage (7-Technologies)
  
• ICSA-11-335-01�??7-TECHNOLOGIES IGSS DATA SERVER BUFFER OVERFLOW (US-CERT)