Home -> Resources -> SCADA/ICS Vulnerability Reference -> Scadatec Procyon

Scadatec Procyon 'Coreservice.exe' Stack Buffer Overflow Vulnerability

September 7, 2011

Scadatec Procyon is prone to a remote buffer-overflow vulnerability.

An attacker could exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions.

Versions prior to Procyon 1.14 are vulnerable.

ICS-CERT Advisories / Alerts

ICSA-11-216-01

Vendor Website (include Patches / Hotfixes)

Scadatec Procyon HMI/SCADA
Downloads for Existing Customers (patch)

Exploit Proof-of-Concept

Metasploit Framework (windows/scada/procyon_core_server)

Common Vulnerability & Exposure (CVE) References

CVE-2011-3322

Additional Information

Security Focus Vulnerability Info and Exploit Bugtraq ID 49480
Open-Source Vulnerability Database #75371
Secunia Advisory #45866
Stratsec Advisory SS-2011-008
Exploit-DB ID 17827

SCADA Firms Suffer Vulnerabilities (ISSSource)