Details of VAR-201205-0549

ID

VAR-201205-0549

TITLE

Wonderware Archestra SuiteLink 'slssvc.exe' Remote Denial of Service Vulnerability

Trust: 1.1

sources: IVD: 1e203e82-1f68-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-2566 // BID: 53498

DESCRIPTION

WonderWare is an industrial control and automation software. When the Wonderware Archestra SuiteLink calls the _Grow() function, the slssvc service fails to perform the boundary check correctly. The attacker sends a TCP packet containing the long string parameter to the service, which can cause the application to crash. Wonderware Archestra SuiteLink is prone to a remote denial-of-service vulnerability

Trust: 0.99

sources: CNVD: CNVD-2012-2566 // BID: 53498 // IVD: 1e203e82-1f68-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 1e203e82-1f68-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-2566

AFFECTED PRODUCTS

vendor:	wonderware	model:	suitelink	scope:	eq	version:	51.5	Trust: 1.1
vendor:	wonderware	model:	intouch	scope:	eq	version:	10.5	Trust: 0.9
vendor:	wonderware	model:	suitelink	scope:	eq	version:	51.5.0.0	Trust: 0.9
vendor:	wonderware	model:	archestra suitelink	scope:	ne	version:	59	Trust: 0.3
vendor:	wonderware	model:	archestra suitelink	scope:	ne	version:	56	Trust: 0.3
vendor:	wonderware	model:	intouch	scope:	eq	version:	10.5*	Trust: 0.2
vendor:	wonderware	model:	suitelink	scope:	eq	version:	51.5.0.0*	Trust: 0.2

sources: IVD: 1e203e82-1f68-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-2566 // BID: 53498

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD:	1e203e82-1f68-11e6-abef-000c29c66e3d
value:	HIGH
Trust: 0.2

IVD:	1e203e82-1f68-11e6-abef-000c29c66e3d
severity:	HIGH
baseScore:	7.0
vectorString:	AV:N/AC:M/AU:S/C:P/I:N/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.8
impactScore:	7.8
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0 [IVD]
Trust: 0.2

sources: IVD: 1e203e82-1f68-11e6-abef-000c29c66e3d

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201210-483

TYPE

Failure to Handle Exceptional Conditions

Trust: 0.3

sources: BID: 53498

EXTERNAL IDS

db:	BID	id:	53498	Trust: 1.5
db:	CNVD	id:	CNVD-2012-2566	Trust: 0.8
db:	XF	id:	75517	Trust: 0.6
db:	CNNVD	id:	CNNVD-201210-483	Trust: 0.6
db:	IVD	id:	1E203E82-1F68-11E6-ABEF-000C29C66E3D	Trust: 0.2

sources: IVD: 1e203e82-1f68-11e6-abef-000c29c66e3d // CNVD: CNVD-2012-2566 // BID: 53498 // CNNVD: CNNVD-201210-483

REFERENCES

url:	http://xforce.iss.net/xforce/xfdb/75517http	Trust: 0.6
url:	http://www.securityfocus.com/bid/53498	Trust: 0.6
url:	http://us.wonderware.com/	Trust: 0.3
url:	http://global.wonderware.com/en/pages/default.aspx	Trust: 0.3
url:	http://aluigi.altervista.org/adv/suitelink_1-adv.txt	Trust: 0.3

sources: CNVD: CNVD-2012-2566 // BID: 53498 // CNNVD: CNNVD-201210-483

CREDITS

Luigi Auriemma

Trust: 0.9

sources: BID: 53498 // CNNVD: CNNVD-201210-483

SOURCES

db:	IVD	id:	1e203e82-1f68-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2012-2566
db:	BID	id:	53498
db:	CNNVD	id:	CNNVD-201210-483

LAST UPDATE DATE

2022-05-17T02:08:15.927000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2012-2566	date:	2012-05-17T00:00:00
db:	BID	id:	53498	date:	2012-05-13T00:00:00
db:	CNNVD	id:	CNNVD-201210-483	date:	2012-10-22T00:00:00

SOURCES RELEASE DATE

db:	IVD	id:	1e203e82-1f68-11e6-abef-000c29c66e3d	date:	2012-05-17T00:00:00
db:	CNVD	id:	CNVD-2012-2566	date:	2012-05-17T00:00:00
db:	BID	id:	53498	date:	2012-05-13T00:00:00
db:	CNNVD	id:	CNNVD-201210-483	date:	2012-05-13T00:00:00