[ICS] Wellintech KingView SCADA Security Update Released

A remotely exploitable vulnerability has been reported in the Wellintech KingView SCADA system. At least Wellintech KingView version 6.5.3 is affected. Exploit code is available (first link below). As of this writing, no patch has been released.

UPDATE 19 Jan 2011 – Wellintech has released a patched library to address the problem.

References:
http://downloads.securityfocus.com/vulnerabilities/exploits/45727.py
http://www.us-cert.gov/control_systems/pdf/ICS-Alert-11-011-01.pdf

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Leave a Reply