OTPulse
FeedAboutContact

MatrikonOPC Multiple Product Vulnerabilities

Low RiskICS-CERT ICSA-13-106-01Jan 18, 2013
Summary

MatrikonOPC A&E Historian version 1.0.0.0 and MatrikonOPC Security Gateway version 1.0.x contain multiple vulnerabilities. CWE-754 (improper error handling) and CWE-22 (path traversal) could allow attackers to bypass security restrictions or access unauthorized files on systems running these products. No patches are available from the vendor.

What this means
What could happen
These vulnerabilities could allow an attacker with network access to the MatrikonOPC products to bypass security controls or access sensitive files on the system, potentially disrupting OPC data access for your SCADA/HMI systems.
Who's at risk
Water utilities and electric utilities using MatrikonOPC products for SCADA integration and OPC data distribution. Specifically impacts organizations running MatrikonOPC A&E Historian or Security Gateway for real-time process data access on engineering workstations or data servers.
How it could be exploited
An attacker on the network could send specially crafted requests to the MatrikonOPC products to exploit improper error handling (CWE-754) or path traversal (CWE-22) vulnerabilities. This could allow unauthorized access to files or circumvention of intended security restrictions on the OPC server.
Prerequisites
  • Network access to MatrikonOPC A&E Historian or Security Gateway service ports
  • MatrikonOPC product version 1.0.0.0 (A&E Historian) or 1.0.x (Security Gateway) running
no patch availableremotely exploitablepath traversal vulnerabilityimproper error handling
Exploitability
Low exploit probability (EPSS 0.5%)
Affected products (2)
2 EOL
ProductAffected VersionsFix Status
MatrikonOPC A&E Historian: 1.0.0.01.0.0.0No fix (EOL)
MatrikonOPC Security Gateway: 1.0.1.0.No fix (EOL)
Remediation & Mitigation
0/3
Do now
0/1
HARDENINGImplement network segmentation to restrict access to MatrikonOPC servers from only trusted engineering workstations and SCADA systems
Mitigations - no patch available
0/2
The following products have reached End of Life with no planned fix: MatrikonOPC A&E Historian: 1.0.0.0, MatrikonOPC Security Gateway: 1.0.. Apply the following compensating controls:
HARDENINGMonitor network traffic to and from MatrikonOPC servers for suspicious activity or unauthorized connection attempts
HARDENINGEvaluate replacement or upgrade of MatrikonOPC products if vendor support and patching is no longer available
View full CISA ICS-CERT advisory
โ†‘โ†“ Navigate ยท Esc Close
API: /api/v1/advisories/49c1d260-1dd2-4f95-9864-53f7d4d63234
MatrikonOPC Multiple Product Vulnerabilities - OTPulse