Denial of Service Vulnerability in Schneider Electric StruxureWare SCADA Expert
CVE-2014-0779

Currently unrated

Key Information:

Vendor: Aveva
Status: Clearscada
Vendor: CVE Published:; 14 March 2014

What is CVE-2014-0779?

The vulnerability in the PLC driver in ServerMain.exe for Schneider Electric's StruxureWare SCADA Expert allows remote attackers to exploit crafted OPF files. This exploit could lead to a denial of service, causing the application to crash and disrupting operations. It impacts several builds of ClearSCADA, potentially putting critical industrial systems at risk.

References

http://download.schneider-electric.com/files?p_Doc_Ref=SE...

x_refsource_CONFIRM

http://ics-cert.us-cert.gov/advisories/ICSA-14-072-01

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 14, 2014
Vulnerability Reserved
Jan 2, 2014

Aveva

What is CVE-2014-0779?

References

Timeline