C3-ilex EOScada Multiple Vulnerabilities

Low RiskICS-CERT ICSA-12-271-01Jul 1, 2012

Summary

EOScada versions below 11.0.19.2 contain multiple vulnerabilities: information disclosure (CWE-200) that could expose sensitive system data, broken access controls (CWE-284) that bypass authentication or authorization mechanisms, and insufficient input validation (CWE-400) that allows denial-of-service attacks through resource exhaustion. These vulnerabilities affect the core SCADA supervisory control functions and could be exploited by unauthenticated attackers with network access to EOScada services.

What this means

What could happen

An attacker with network access to EOScada could read sensitive system information, bypass access controls, or disrupt system availability through resource exhaustion attacks.

Who's at risk

Energy sector operators running C3-ilex EOScada systems should be concerned, particularly utilities managing generation, transmission, or distribution assets that rely on EOScada for SCADA monitoring and control. This includes any facility using EOScada versions below 11.0.19.2 for critical process control or real-time monitoring.

How it could be exploited

An attacker on the network could connect directly to EOScada services to exploit information disclosure vulnerabilities (CWE-200) to extract sensitive data, or exploit weak access controls (CWE-284) to gain unauthorized access to system functions. The vulnerability could also allow an attacker to trigger denial-of-service conditions (CWE-400) that disrupt SCADA operations.

Prerequisites

Network access to EOScada system (typically port 502 for Modbus or proprietary control ports)
System running vulnerable EOScada version below 11.0.19.2
Access to SCADA network or exposed management interface

remotely exploitableweak access controlsinformation disclosure riskdenial-of-service potential

Exploitability

Low exploit probability (EPSS 1.0%)

Affected products (1)

ProductAffected VersionsFix Status

EOScada: <11.0.19.2<11.0.19.2No fix (EOL)

Remediation & Mitigation

0/4

Do now

0/1

WORKAROUNDDeploy firewall rules to limit inbound connections to EOScada to authorized engineering workstations and control centers only

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpgrade EOScada to version 11.0.19.2 or later immediately

Mitigations - no patch available

0/2

EOScada: <11.0.19.2 has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:

HARDENINGImplement network segmentation to restrict access to EOScada management interfaces and control ports from untrusted networks

HARDENINGMonitor EOScada systems for unauthorized access attempts and unusual resource consumption

CVEs (4)

CVE-2012-1812 CVE-2012-1810 CVE-2012-1811 CVE-2012-1813

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/b6694151-0c71-482e-acfa-42e37d4a69e5