Ecava Sdn Bhd IntegraXor Project Directory Information Disclosure Vulnerability

Low RiskICS-CERT ICSA-14-008-01Oct 11, 2014

Summary

Ecava IntegraXor versions 4.1.4360 and earlier contain a directory information disclosure vulnerability (CWE-529). The vulnerability allows exposure of project directory information, potentially revealing sensitive configuration and structural details of the SCADA/HMI system.

What this means

What could happen

An attacker with access to the IntegraXor interface could enumerate and view sensitive project directory structure and configuration files, potentially revealing process details, device configurations, and data structures that could be used to plan further attacks.

Who's at risk

Plant operators and system integrators using Ecava IntegraXor as their HMI (Human Machine Interface) or SCADA visualization platform should evaluate this vulnerability. This affects any facility running IntegraXor 4.1.4360 or earlier for process monitoring and control, including water utilities, power systems, manufacturing plants, and other critical infrastructure that relies on IntegraXor for operator dashboards and system integration.

How it could be exploited

An attacker with network access to the IntegraXor application could request directory listings or traverse the project directory structure through the web or application interface to enumerate files and folders without proper access controls. This information disclosure could reveal the layout of SCADA projects, device names, and configuration organization.

Prerequisites

Network access to the IntegraXor application interface (typically port 80 or 443)
No authentication required (directory enumeration accessible without credentials)
IntegraXor version 4.1.4360 or earlier deployed

remotely exploitableno authentication requiredinformation disclosure exposes system configurationno patch availabledirectory traversal possible

Exploitability

Moderate exploit probability (EPSS 2.6%)

Affected products (1)

ProductAffected VersionsFix Status

Ecava Sdn Bhd IntegraXor: <=4.1.4360≤ 4.1.4360No fix (EOL)

Remediation & Mitigation

0/4

Do now

0/1

HARDENINGIsolate IntegraXor servers from untrusted networks using firewall rules; restrict access to the application to authorized engineering and operations personnel only

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HARDENINGMonitor access logs to the IntegraXor application for suspicious directory enumeration or file access attempts

Long-term hardening

0/1

HOTFIXEvaluate upgrading to a newer version of IntegraXor or alternative HMI platform if a patched version becomes available

Mitigations - no patch available

0/1

Ecava Sdn Bhd IntegraXor: <=4.1.4360 has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:

HARDENINGImplement network segmentation to separate IntegraXor servers from corporate networks and external connections using DMZ or air-gap approaches

CVEs (1)

CVE-2014-0752

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/885dfc48-4716-45e8-ae37-a37996fa1cd3