Certec DoS Hole Patched

Wednesday, January 18, 2012 @ 05:01 PM gHale


There is a denial of service (DoS) vulnerability in the Certec EDV GmbH atvise human-machine interface supervisory control and data acquisition (HMI/SCADA) application.

Certec has produced an update that resolves this vulnerability. Independent researcher Luigi Auriemma, who found the vulnerability, validated the update resolves the vulnerability. All Atvise versions older than Version 2.1 suffer from the issue.

RELATED STORIES
Rockwell FactoryTalk Vulnerability
Rockwell Adds More Platform Patches
Patch for Cogent DataHub Holes
OAS HMI Holes Fixed
Snort to Boost SCADA Security

Successful exploitation of these vulnerabilities may allow an attacker to cause a DoS.

Certec EDV GmbH is an Austrian-based company and the affected product, atvise sees use in every field of industrial automation across the globe.

An attacker could exploit this vulnerability by sending specially crafted packets to Port 4840/TCP. CVE-2011-4873 is the number assigned to this vulnerability. This vulnerability is remotely exploitable. Public exploits are targeting this vulnerability. On top of that, an attacker with a low skill level can create the DoS.

Certec developed a new version of atvise that prevents this DoS. Click here to download the new version of atvise.

Certc and ICS-CERT recommend owners of vulnerable versions download and install the updated version as soon as possible.



Leave a Reply

You must be logged in to post a comment.