ICS RealFlex RealWin FC_SCRIPT_FCS_STARTPROG Buffer Overflow (CVE-2011-1563)

Rule ID

1056906

Severity

High

Description

A stack-based buffer overflow vulnerability exists in RealFlex RealWin SCADA server that could be exploited by remote attackers to compromise a vulnerable system.The flaw is due to a boundary error in the handling of "On_FC_SCRIPT_FCS_STARTPROG" requests sent to the server.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

Buffer Overflow

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

sa43848

CVE-2011-1563

EDB-17025

ICSA-11-110-01

T0836

T1210

T0866

T1190

T0819

Keywords

N/A

Date Created

2012/12/30

Last Updated

2023/05/24

This website uses cookies to ensure you get the best experience on our website.