Impact to individual organizations depends on many factors that are unique to each organization. Modbus Serial Driver versions that are affected:Ī successful exploit of this vulnerability could cause a buffer overflow that could allow arbitrary code execution with user privileges. OPC Factory Server (OFS) Versions 3.40 and earlier.
The following Schneider Electric products bundle the Schneider Electric Modbus Serial Driver (ModbusDrv.exe), which is started when attempting to connect to a Programmable Logic Controller (PLC) via the serial port of a personal computer: This vulnerability can be exploited remotely.
Schneider Electric has produced patches that mitigate this vulnerability for some of the products listed below. This updated advisory is a follow-up to the original advisory titled ICSA-14-086-01A Schneider Electric Serial Modbus Driver Buffer Overflow that was published March 27, 2014, on the NCCIC/ICS-CERT web site.Ĭarsten Eiram of Risk-Based Security has identified a stack-based buffer overflow vulnerability in Schneider Electric’s Serial Modbus Driver that affects 11 Schneider Electric products.