IN11-509: Canadian CCIRC Vulnerability Note

The Canadian Cyber Incident Response Centre Information (CCIRC) Information Note IN11-509 on Cyber Threats and Vulnerabilities Against SCADA Systems summarizes hundreds of pages of security bulletins into a succinct document.

 

This note covers 19 important Vulnerabilities.

 

Downloadable PDF Data sheet for the Modbus TCP Enforcer - describes features and benefits for modbus security CCIRC IN11-509 (36 kb) No distribution permitted – see details below.

 

CCIRC IN11-509 (text version - 24 kb) No distribution permitted – see details below.

 

Vulnerabilities particular to this update:

 

1.   Rockwell Automation FactoryTalk Diagnostic Viewer Vulnerability
2.   InduSoft ISSymbol ActiveX Control Buffer Overflows
3.   AzeoTech DAQFactory Networking Vulnerabilities
4.   ICONICS GENESIS32 and BizViz Login Vulnerability

5.   ICONICS GENESIS32 and BizViz ActiveX Trusted Zone Vulnerability
6.   Siemens SIMATIC WinCC Exploitable Crashes
7.   7-Technologies IGSS ODBC Remote Memory Corruption
8.   Invensys Wonderware Information Server
9.   A Summary of Reported Issues Affecting Siemens Simatic PLCs
10.   Inductive Automation Ignition Information Disclosure Vulnerability
11.   ClearSCADA Remote Authentication Bypass
12.   Siemens WinCC Flexible Runtime Advanced Loader Heap Overflow
13.   Scadatec Procyon Telnet Buffer Overflow Vulnerability
14.   Measuresoft ScadaPro Multiple Vulnerabilities
15.   AzeoTech DAQFactory Stack Overflow
16.   Rockwell RSLogix Denial of Service Vulnerability
17.   InduSoft ISSymbol ActiveX Control Buffer Overflows
18.   ICONICS GENESIS32 Multiple Memory Corruption Vulnerabilities
19.   Unitronics UniOPC Server Input Handling Vulnerability
 

No distribution permitted

You are accessing this document because you are a bona fide ICS or SCADA security professional.  Do not redistribute this information or post it on the internet. 

 

If you know someone who would like this document, please send them the link:

http://www.tofinosecurity.com/user/register to register for this website to obtain access. (You cannot go to this link if you are logged into this website.  The link works for people who are not logged in.)

Related Links

"Siemens PLC Security Vulnerabilities – It Just Gets Worse" - In this blog article, Eric Byres shares his concerns about Siemens.

 

"Digging for Facts on the Siemens S7-1200 PLC Security Vulnerabilities, Part 1/3" - In this blog article, Eric Byres explains which Siemens products are affected.

 

"Siemens S7-1200 PLC Security Vulnerabilities, Part 2/3" - In this blog article, Eric Byres explains what the PLC security vulnerabilities mean for the SCADA and ICS industry as a whole.

 

"Protecting Siemens S7-1200 PLCs against Security Vulnerabilities, Part 3/3" - In this blog article, Eric Byres explains what the PLC security vulnerabilities means for SCADA / ICS professionals.

 

"More SCADA Security Threats: Where There’s Smoke, There’s Fire" -  This blog article discusses how once a vulnerability is identified, it is often easy to find more.

 

"The Italian Job – Multiple SCADA/ICS Vulnerabilities Go Public” – in this blog article Eric Byres gives his perspective and concerns about the multiple vulnerabilities released by Luigi Auriemma, an Italian researcher.

 

ISSSource.com, June 9, 2011

Siemens PLC Security Vulnerabilities

 

ISSSource.com, March 23, 2011

More SCADA Vulnerabilities Found