Elipse Fixes SCADA DNP3 DoS

Wednesday, December 3, 2014 @ 03:12 PM gHale

Elipse created a new version of the DNP3 driver that mitigates a denial of service (DoS) vulnerability in its SCADA application, according to a report on ICS-CERT.

Independent researchers Adam Crain and Chris Sistrunk discovered the remotely exploitable vulnerability.

Siemens Updates WinCC Fixes
MatrikonOPC Mitigates Vulnerability
Siemens Mitigates Critical Vulnerabilities
Advantech Deals with Multiple Vulnerabilities

The following Elipse products suffer from the issue:
• Elipse SCADA 2.29 build 141 and prior w/ DNP3 driver
• Elipse E3 versions V1.0 to V4.6
• Elipse Power systems Versions V1.0 to V4.6
• DNP 3.0 Master v3.02 and prior

An attacker exploiting this vulnerability can cause the process to end up disabled until it the user manually restarts it.

Elipse is a Brazil-based company that has business partners in several countries around the world, including the U.S., Germany, India, Russia, Sweden, Argentina, and Chile.

The affected product, Elipse SCADA, is a web-based SCADA system. These products deploy across several sectors including critical manufacturing, energy, water and wastewater systems, and others. Elipse estimates these products see use worldwide.

Elipse investigated the notification, identifying a vulnerability in DNP Master Driver V3.02, which ended up reproduced in Elipse SCADA, Elipse E3, and Elipse Power systems. The attack consists of sending data packets with formatting errors, causing a process failure.

When the exploit implements against Elipse E3 and Elipse Power systems, the unavailability is temporary (about 30 seconds), and when used against Elipse SCADA, the system becomes unavailable until a system restart.

CVE-2014-5429 is the case number assigned to this vulnerability, which has a CVSS v2 base score of 5.0.

No known public exploits specifically target this vulnerability. However, an attacker with a low skill would be able to exploit this vulnerability.

Elipse has created a new version of DNP Master Driver (V.4.0.21) that fixes this problem. Elipse also made this new version available October 27 on its web site.

Leave a Reply

You must be logged in to post a comment.