Denial of Service Vulnerability in Schneider Electric StruxureWare SCADA Expert
CVE-2014-0779

Currently unrated

Key Information:

Vendor: Schneider Electric
Status: Clearscada; Scada Expert Clearscada
Vendor: CVE Published:; 14 March 2014

🔔 Create Schneider Electric Vulnerability Alert

What is CVE-2014-0779?

The vulnerability in the PLC driver in ServerMain.exe for Schneider Electric's StruxureWare SCADA Expert allows remote attackers to exploit crafted OPF files. This exploit could lead to a denial of service, causing the application to crash and disrupting operations. It impacts several builds of ClearSCADA, potentially putting critical industrial systems at risk.

Affected Version(s)

ClearSCADA 2010 R2 (build 71.4165)

ClearSCADA 2010 R2.1 (build 71.4325)

ClearSCADA 2010 R3 (build 72.4560)

References

http://download.schneider-electric.com/files?p_Doc_Ref=SE...

x_refsource_CONFIRM

https://www.cisa.gov/news-events/ics-advisories/icsa-14-0...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 14, 2014
Vulnerability Reserved
Jan 2, 2014

JSON