MidnightBSD

Advisories for catapultsoftware

CVE-2013-2811 HIGH

The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY and iFIX, allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
ge intelligent_platforms_proficy_hmi/scada_cimplicity 8.0
ge intelligent_platforms_proficy_dnp3_i/o_driver *
ge intelligent_platforms_proficy_hmi/scada_cimplicity 4.01
ge intelligent_platforms_proficy_hmi/scada_cimplicity 7.5
ge intelligent_platforms_proficy_hmi/scada_cimplicity 8.2
ge intelligent_platforms_proficy_hmi/scada_ifix 5.1
ge intelligent_platforms_proficy_hmi/scada_cimplicity 8.1
catapultsoftware catapult_dnp3_i/o_driver *
ge intelligent_platforms_proficy_dnp3_i/o_driver 7.20
ge intelligent_platforms_proficy_hmi/scada_ifix 5.0
CVE-2013-2823 MEDIUM

The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY and iFIX, allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
ge intelligent_platforms_proficy_hmi/scada_cimplicity 8.0
ge intelligent_platforms_proficy_dnp3_i/o_driver *
ge intelligent_platforms_proficy_hmi/scada_cimplicity 4.01
ge intelligent_platforms_proficy_hmi/scada_cimplicity 7.5
ge intelligent_platforms_proficy_hmi/scada_cimplicity 8.2
ge intelligent_platforms_proficy_hmi/scada_ifix 5.1
ge intelligent_platforms_proficy_hmi/scada_cimplicity 8.1
catapultsoftware catapult_dnp3_i/o_driver *
ge intelligent_platforms_proficy_dnp3_i/o_driver 7.20
ge intelligent_platforms_proficy_hmi/scada_ifix 5.0