1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Sielco Sistemi Winlog Lite CVE-2012-3815

Attack: Sielco Sistemi Winlog Lite CVE-2012-3815

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt to exploit a buffer overflow vulnerability in Sielco Sistemi Winlog Lite.

Additional Information

Winlog Lite is a SCADA/HMI application for monitoring industrial and civil factories.

Winlog Lite is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.

An attacker can exploit this issue by sending a specially-crafted request through TCP port 46824.

Attackers can exploit this issue to execute arbitrary code within the context of the application using the vulnerable control. Failed exploit attempts will result in a denial-of-service condition.

Affected

  • Sielco Sistemi Winlog Lite 2.07.14
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube