Schneider Electric Telvent SAGE Remote Terminal Unit DoS Vulnerability

Last Update Date: 4 Feb 2014 16:15 Release Date: 4 Feb 2014 3816 Views

RISK: Medium Risk

Medium Risk

TYPE: Operating Systems - Embedded OS

TYPE: Embedded OS

A vulnerability has been identified in Schneider Electric Telvent SAGE Remote Terminal Unit, which can be exploited by a remote user can cause denial of service conditions.

 

A remote user can send specially crafted DNP3 data to interrupt communications and cause the target service to temporarily consume excessive CPU resources.

Impact

  • Denial of Service

System / Technologies affected

  • Telvent SAGE 3030 C3413-500-001D3_P4 (Firmware from 2010)
  • Telvent SAGE 3030 C3413-500-001F0_PB (Latest Firmware)

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued a fix (Schneider Electric RTU Software Security Bulletin number RTUSW 13001).

 

Vulnerability Identifier

Source

Related Link

Share with

Previous

cURL Information Disclosure Vulnerability

4 Feb 2014 3727 Views

Next

MySQL Remote Code Execution Vulnerability

4 Feb 2014 3887 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY