Details of VAR-201204-0233

ID

VAR-201204-0233

TITLE

GE Energy D20/D200 Substation Controller Remote Buffer Overflow Vulnerability

Trust: 1.1

sources: IVD: 93713bb0-1f6c-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-1828 // BID: 52955

DESCRIPTION

The D20/D200 Substation Controller is the gateway to the SCADA master, downstream substation, and feeder of the IED. General Electric (GE) The D20ME is part of the GE D20Substation Controller product. The General Electric D20/D200 device contains multiple buffer overflow vulnerabilities in the TFTP server, allowing remote attackers to perform denial of service attacks on devices or to execute arbitrary code in the context of the application. D20/D200 Substation Controller is prone to a buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition

Trust: 0.99

sources: CNVD: CNVD-2012-1828 // BID: 52955 // IVD: 93713bb0-1f6c-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 93713bb0-1f6c-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-1828

AFFECTED PRODUCTS

vendor:	ge	model:	energy d20/d200 substation controller	scope:	-	version:	-	Trust: 0.6
vendor:	general	model:	electric d20/d200 substation controller	scope:	eq	version:	0	Trust: 0.3
vendor:	ge	model:	energy d20/d200 substation controller null	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 93713bb0-1f6c-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-1828 // BID: 52955

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD:	93713bb0-1f6c-11e6-abef-000c29c66e3d
value:	HIGH
Trust: 0.2

IVD:	93713bb0-1f6c-11e6-abef-000c29c66e3d
severity:	NONE
baseScore:	NONE
vectorString:	NONE
accessVector:	NONE
accessComplexity:	NONE
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	UNKNOWN
Trust: 0.2

sources: IVD: 93713bb0-1f6c-11e6-abef-000c29c66e3d

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201204-142

TYPE

Buffer overflow

Trust: 0.8

sources: IVD: 93713bb0-1f6c-11e6-abef-000c29c66e3d // CNNVD: CNNVD-201204-142

EXTERNAL IDS

db:	BID	id:	52955	Trust: 1.5
db:	ICS CERT ALERT	id:	ICS-ALERT-12-019-01A	Trust: 0.9
db:	CNVD	id:	CNVD-2012-1828	Trust: 0.8
db:	CNNVD	id:	CNNVD-201204-142	Trust: 0.6
db:	IVD	id:	93713BB0-1F6C-11E6-ABEF-000C29C66E3D	Trust: 0.2

sources: IVD: 93713bb0-1f6c-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-1828 // BID: 52955 // CNNVD: CNNVD-201204-142

REFERENCES

url:	http://www.us-cert.gov/control_systems/pdf/ics-alert-12-019-01a.pdf	Trust: 0.9
url:	http://www.securityfocus.com/bid/52955	Trust: 0.6
url:	http://site.ge-energy.com/prod_serv/products/substation_automation/en/controllers/d20_d200.htm	Trust: 0.3

sources: CNVD: CNVD-2012-1828 // BID: 52955 // CNNVD: CNNVD-201204-142

CREDITS

Reid Wightman

Trust: 0.9

sources: BID: 52955 // CNNVD: CNNVD-201204-142

SOURCES

db:	IVD	id:	93713bb0-1f6c-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2012-1828
db:	BID	id:	52955
db:	CNNVD	id:	CNNVD-201204-142

LAST UPDATE DATE

2022-05-17T01:57:57.030000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2012-1828	date:	2012-04-11T00:00:00
db:	BID	id:	52955	date:	2012-04-09T00:00:00
db:	CNNVD	id:	CNNVD-201204-142	date:	2012-04-12T00:00:00

SOURCES RELEASE DATE

db:	IVD	id:	93713bb0-1f6c-11e6-abef-000c29c66e3d	date:	2012-04-11T00:00:00
db:	CNVD	id:	CNVD-2012-1828	date:	2012-04-11T00:00:00
db:	BID	id:	52955	date:	2012-04-09T00:00:00
db:	CNNVD	id:	CNNVD-201204-142	date:	2012-04-12T00:00:00