SpecView Hole in SCADA/HMI line

Friday, August 3, 2012 @ 04:08 PM gHale

There is a public report of a directory traversal vulnerability with proof-of-concept (PoC) exploit code affecting SpecView, a supervisory control and data acquisition/human-machine interface (SCADA/HMI) product.

A directory traversal vulnerability could occur when a specially crafted request passes to the web server running on Port 80\TCP, according to this report, released by security researcher Luigi Auriemma without coordination with either the vendor or ICS-CERT. Successful exploitation could result in data leakage.

Siemens Default Password Hole
Software Providers Suffer Vulnerabilities
Fixes for Sielco Sistemi Holes
Hot Fix for ICONICS Zero Day

The vendor is aware of the issue and is seeking to confirm the vulnerability and then offer any mitigation. ICS-CERT is issuing this alert to provide early notice of the report and identify baseline mitigations for reducing risks to these and other cyber security attacks.

ICS-CERT is currently coordinating with the vendor to identify mitigations. ICS-CERT recommends that users take defensive measures to minimize the risk of exploitation of these vulnerabilities.

Leave a Reply

You must be logged in to post a comment.