Hotfix for DeltaV Vulnerability

Monday, October 1, 2012 @ 06:10 PM gHale

Emerson created a hotfix that mitigates a buffer-overflow vulnerability in its DeltaV application.

A remote attacker could exploit this vulnerability and cause a denial of service (DoS), however at this point no known exploits exist, according to a report on ICS-CERT.

Optimalog Closes Optima PLC Hole
Siemens has Fix for CA Vulnerability
ORing SCADA Line Vulnerability
SCADA Directory Traversal Vulnerability

Researcher Kuang-Chun Hung of the Security Research and Service Institute-Information and Communication Security Technology Center (ICST) discovered the vulnerability and the organization tested the hotfix and confirms it fully resolves the vulnerability.

“While no one enjoys having a security issue, Emerson appreciated working with the staff at ICS-CERT and the Taiwanese researcher in resolving these vulnerabilities in a professional manner,” said Jeff Potter, director — security architecture for PlantWeb Technology at Emerson. “ICS-CERT in turn indicated they were pleased with the diligence and timeliness of Emerson’s response.”

The following supported Emerson products are affected: DeltaV V9.3.1, V10.3.1, V11.3, and V11.3.1

Emerson is a global manufacturing and technology company offering multiple products and services in the industrial, commercial, and consumer markets through its network power, process management, industrial automation, climate technologies, and tools and storage businesses.

The DeltaV service allows a string to copy without bounds checking. By sending a large string to a specific port, an attacker could cause a crash. CVE-2012-3035 is the number assigned to this vulnerability, which has a CVSS v2 base score of 5.0.

Emerson distributed a notification in KBA NK-1200-0170 to customers who own a DeltaV Control System; the notification provides details of the vulnerability, recommended mitigations, and instructions on obtaining and installing the hotfix. Customers using DeltaV V9.3.1 and V10.3 should update to V10.3.1 as there is no hotfix for those versions.

Leave a Reply

You must be logged in to post a comment.