[ISN] Stuxnet-Like Trojans Can Exploit Critical Flaw in Chinese Industrial Software

From: InfoSec News <alerts_at_private>
Date: Thu, 13 Jan 2011 02:40:19 -0600 (CST)
http://www.eweek.com/c/a/Security/StuxnetLike-Trojans-Can-Exploit-Critical-Flaw-in-Chinese-Industrial-Software-296674/

By Fahmida Y. Rashid
eWEEK.com
2011-01-12

A critical security flaw in supervisory-control-and-data-acquisition 
(SCADA) systems used in China raises the possibility of another 
Stuxnet-like attack, a security researcher said.

The latest stable version of KingView, the SCADA software developed by 
Beijing WellinControl Technology Development, contains a critical heap 
overflow vulnerability, wrote Dillon Beresford, a security researcher at 
NSS Labs, on his personal blog. KingView is used to visualize process 
data in industrial control systems and has been used throughout Chinese 
industry, including the aerospace and national defense industries.

"This is not any old software," Beresford warned, noting that the 
vulnerability affected one of the "most widely trusted and used" SCADA 
software systems in China.

SCADA systems are used to operate critical equipment at industrial 
facilities, factories, power plants, and oil and gas refineries.

While poking around the Chinese SCADA software, Beresford found a heap 
overflow vulnerability in a software module that listens for and 
processes incoming log events from the human machine interface module. 
The vulnerability allows remote attackers to take full control of the 
Windows system running the flawed software, Beresford said.

[...]


___________________________________________________________      
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/
Received on Thu Jan 13 2011 - 00:40:19 PST

This archive was generated by hypermail 2.2.0 : Thu Jan 13 2011 - 00:46:33 PST