General Electric Intelligent Platforms (GE-IP) Proficy Historian Data Archiver Buffer Overflow Vulnerability
November 1, 2011 (updated November 29, 2011, December 6,
2011)
Luigi Auriemma has discovered a vulnerability within the
General Electric Intelligent Platforms (GE-IP) Proficy
Historian and coordinated this disclosure via
Tipping Point (part of Hewlett-Packard) ZDI-11-320.
This vulnerability in the Proficy Historian can be exploited
by malicious people to compromise a vulnerable system.
An error in the Data Archiver service (ihDataArchiver.exe or
ihDataArchiver_x64.exe) when processing certain network
messages can be exploited to cause a stack-based buffer
overflow via a specially crafted packet sent to 14000/tcp.
Successful exploitation of this vulnerability may allow
execution of arbitrary code. Failed exploit attempts will
likely result in denial-of-service conditions.