Thursday, March 17, 2011

Agora+ SCADA Exploit Pack for CANVAS

GLEG ltd. is pleased to announce Agora SCADA+ exploit pack that is entirely focused on industrial software and hardware vulnerabilities.
The initial version of Agora SCADA+ cotains:
All scada modules recenlty posted to Agora. (which is 11 modules with 2 0days) plus:
  • [0day] SCADA. Atvise bug
  • [0day] SCADA. ClearScada DBServer DOS and sensitive information disclosure
  • [0day] SCADA. ClearScada DOS. allows to crash multiple scada services
  • [0day] DataRate SCADA WebControl and RuntimeHost services bugs
  • [0day] Indusoft SCADA Webstudio 6.1 sp6 bug
  • [0day] Indusoft SCADA web studio 7.0 heap corruption. PoC.
  • [0day] DoS for OPC Modbus Ethernet Server
  • ITS scada SQL Injection. no CVE. public
  • Automated Solutions Modbus/TCP OPC Server Remote Heap Corruption PoC. CVE-2010-4709
  • BACnet OPC client before 1.0.25 arbitrary code execution. CVE-2010-4740
  • Advantech Studio 6.1 Web server DoS. CVE-2011-0488
  • ICONICS Dialog Wrapper Module ActiveX control exploit. CVE-2006-6488. soft is still frequent
Total 23 modules including 9 0days.
Posted by Joel Langill at 8:20 AM

10 comments:

  1. AnonymousMarch 22, 2011 at 5:37 AM

    фывафывафыа

    ReplyDelete
  2. PJCoyleMarch 22, 2011 at 7:43 AM

    Only 9 0-days? I know Stuxnet only had 4, but Luigi published 34.... ICS-CERT is going to be busy again today.

    ReplyDelete
  3. Iman TriwahyudiSeptember 29, 2011 at 10:55 AM

    Joel,
    please let me inform you, I develop PLC and Scada training center.
    the schedule klik : Jadwal Training PLC and Scada

    Salam,
    Iman

    ReplyDelete
  4. scaindiaMarch 31, 2014 at 2:22 PM

    The PLC and scada training happen to be the best options to know about the latest developments in the industry. You can also avail a better job opportunity as you undergo these trainings.

    ReplyDelete
  5. UnknownApril 18, 2014 at 5:09 AM

    Your blog is very interesting. nice to read. Thanks for sharing
    Please visit the website:
    Green Coffee Bean Extract Manufacturers

    ReplyDelete
  6. UnknownJanuary 21, 2016 at 1:25 AM

    Nice blog post, The web based SCADA which is generally termed as the WEB SCADA is the type of system that has been used to make the control system over any place global so that users all over the world can go for the same.

    ReplyDelete
  7. unitechplctrainingJune 10, 2016 at 2:31 AM

    Hi.. your blog is very intersting. Nice to read. Thanks for sharing this
    Industrial automation training bangalore

    ReplyDelete
  8. UnknownAugust 2, 2017 at 6:15 AM

    Great Post..

    ReplyDelete
  9. DIACDecember 4, 2017 at 12:06 AM

    Industrial Automation Training is a way to grow your career in industries. Get 6 month training and job experience. Call on 91-931O096831.

    ReplyDelete
  10. Lia SparksJuly 11, 2024 at 4:51 PM

    Great readiing your post

    ReplyDelete

Subscribe to: Post Comments (Atom)