Patch Fixes C3-ilex Holes

Friday, November 2, 2012 @ 01:11 PM gHale


C3-ilex’s created a patch that fixes the multiple vulnerabilities in the C3-ilex’s EOScada application that can lead to data leakage and a denial-of-service (DoS).

C3-ilex said the remotely exploitable vulnerabilities, reported by Dale Peterson of Digital Bond, affect all EOScada versions prior to 11.0.19.2, according to a report on ICS-CERT.

RELATED STORIES
Korenix Fixes Vulnerability
GE Mitigates Proficy Holes
SCADA Vulnerability Surfaces
WellinTech Patches Vulnerability

C3-ilex’s EOScada is a real-time Windows-based energy management system for electrical, water, sewage, and gas applications. The EOScada platform features a distributed processing, networked configuration using PCs running Microsoft Windows. The EOScada product line includes PC-based Master Stations as well as remote terminal units (RTUs) that perform communication, data concentration, and connections to a variety of intelligent electronic devices (IEDs).

EOScada sees use in the electrical sector with some usage in the water and oil and natural gas sectors.

One of the issues is the EOS Core Scada.exe does not restrict access which can cause a DoS condition when attached to Port 5050/TCP or Port 24004/TCP, and any random data goes to either port. The application will crash and restart and will be unavailable to users during that time. CVE-2012-1810 is the number assigned to this vulnerability, which has CVSS V2 base score of 5.0.

The EOSDataServer.exe attached to Port 24006/TCP is susceptible to a resource management error when a large amount of random data is sent to the port. CVE-2012-1811 is the number assigned to this vulnerability, which has a CVSS V2 base score of 7.8.

The eosfailoverservice.exe returns data in clear text when there is a connection to Port TCP/12000. CVE-2012-1812 is the number assigned to this vulnerability, which has a CVSS V2 base score of 5.0.

The eosfailoverservice.exe attached to Port 12000/TCP is susceptible to a resource management error when a large amount of random data sends to the port. CVE-2012-1813 is the number assigned to this vulnerability, which has a CVSS V2 base score of 7.8.

C3-ilex recommends customers install the EOScada patch. Customers with a service agreement should contact C3-ilex’s Helpdesk at helpdesk@c3ilex.com or by calling the Help Desk at (510) 659-8300 x 107 for instructions on how to obtain the release. Customers without a service agreement should contact their C3-ilex Sales Manager for assistance in purchasing this or a later version release.



Leave a Reply

You must be logged in to post a comment.