DHS Warns of New SCADA Security Flaw
The vulnerability in the Sielco Sistemi Winlog application could be exploited to execute arbitrary code.
The U.S. Department of Homeland Security has released an advisory [PDF file] warning of a buffer overflow vulnerability in the Sielco Sistemi Winlog application.
"A hacker could exploit this vulnerability, identified by independent researcher Paul Davis, to carry out an arbitrary code execution or program crash, according to the advisory issued by the DHS Industrial Control Systems Cyber Emergency Response Team," Infosecurity reports.
"Sielco Sistemi is an Italian company that makes supervisory control and data acquisition/human-machine interface (SCADA/HMI) software and hardware products," the article states.
Go to "Buffer overflow vulnerability identified in Sielco Sistemi SCADA system" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.