GE Intelligent Platforms > Support >  KB > KB13253
Security Issue: CERT Reported Vulnerabilities in iFIX Security
Description

Description

CERT has reported vulnerabilities in iFIX (versions PDE, 2.0, 2.2, 2.21, 2.5, 2.6, 3.0, 3.5, 4.0, 4.5, and 5.0). The vulnerabilities involve iFIX security, and can be exploited when it is used and an attacker has direct or network access to a HMI/SCADA or VIEW node. The consequence of a successful exploit is that an attacker will have elevated privilege to the HMI/SCADA node.

Resolution

Please review the attached document for further information on these vulnerabilities and mitigating steps.


ProductVersionModule
HMI/SCADA - iFIX 2.0, 2.21, 2.5, 2.6, 3.0, 3.5, 4.0, 4.5, 5.0 All


Type File Name Size Description
 SCADA Vulnerabilities.pdf 221K  


Details
ID: KB13253
Category: Articles
Last Updated: 06/07/13
Date Created: 02/09/09
Status: Published
Attachments: Yes
Language: English
User Group: All


 


Overall Rating: 0.86 (31 responses)
Rate this content record (1=lowest, 5=highest)
5
4
3
2
1
Comment