Software flaw exposed critical infrastructure firms to remote code execution

Software flaw exposed critical infrastructure firms to remote code execution

Software flaw exposed critical infrastructure firms to remote code execution

A critical flaw in an automation tool used to connect IT and OT systems in critical infrastructure firms in oil & gas, wind, municipal water, and solar sectors exposed such organisations to remote code execution, researchers have revealed.

According to security researchers at Tenable, an unauthenticated remote code execution vulnerability was discovered in InduSoft Web Studio, an automation tool used for human-machine interface (HMI) and supervisory control and data acquisition (SCADA) systems by critical infrastructure firms.

The software is used extensively to connect IT and OT systems by organisations in oil & gas, packaging, wind, solar, food & beverage, municipal water, and correctional facilities.

Lack of authentication exposed software to attackers

The researchers explained that by accessing Web Studio’s built-in language, an attacker could execute operating system level commands. By sending a properly crafted DBProcessCall message, the attacker could also direct the software to load a database configuration file from a remote server controlled and operated by the attacker.

This was possible for the attacker because DBProcessCall (Command 66) did not require any authentication or authorisation. By exploiting this vulnerability, an attacker could execute operating system level commands even if Security was enabled, a Main password was set and the Guest account was deleted.

After the vulnerability was highlighted by the researchers, Aveva, the supplier of InduSoft Web Studio, issued a software update to eliminate the security vulnerability. Critical infrastructure firms that use the software have been advised to update their software to InduSoft Web Studio v8.1 SP3 to prevent any breach of their systems.

ALSO READ: 35% of outages at critical infrastructure organisations caused by cyber-attacks

Copyright Lyonsdown Limited 2021

Top Articles

RockYou2021 data leak: 8.4 billion passwords compromised

A report shows that 100GB of data which includes 8.4 billion passwords have been recently leaked on the internet, people are being encouraged to secure their accounts.

Hackers Breach Electronic Arts & Steal Game Code

Electronic Arts, one of the world's biggest video game publishers including games such as FIFA, Madden, Sims and Medal of Honor, are the latest company to be hacked.

JBS Foods paid £7.7m in ransom to REvil ransomware gang

JBS Foods, the world’s largest processor of beef and poultry products, has admitted to paying a ransom of $11 million to cyber criminals, a week after it announced that operations…

Related Articles

[s2Member-Login login_redirect=”https://www.teiss.co.uk” /]