Gleg releases Ver 1.7 of the SCADA+ Exploit Pack

Monday, October 24, 2011

Joel Langill


Gleg releases Ver 1.7 of the SCADA+ Exploit Pack for Immunity Canvas

On October 20, Gleg released version 1.7 of the SCADA+ Exploit Pack for the Immunity Canvas framework, though this time around, I do not see a lot of unique value in the code updates.

Modules of interest in this release represent the bulk of the ICS/SCADA vulnerabilities disclosed in September, including:

  • Rockwell's RSLogix5000 DoS
  • SCADAPRO buffer overflow / DoS
  • Cogent Datahub
  • Sunway httpsvr.exe unauthenticated remote command execution
  • Sunway AngelServer DoS
  • Sunway SNMP NetDBServer stack-based buffer overflow
Step ahead users in addition receive a 0-day:

  • Advantech Web Studio DoS 0-day
I would like to comment that several of these vulnerabilities were disclosed with public PoC code, including:

In addition, the SCADAPro vulnerability with allows remote code execution via directory traversal has been included with the Metasploit Framework in SVN 13967.

I have created a new list of new SCADA/ICS vulnerabilites, complete with PoC (if available) and additional references at I am about a week behind, but intend to keep this current and up to date as new vulnerabilities are disclosed.

As always, please post your comments or suggestions to improve the usefulness of this information.

Cross-posted from SCADAhacker

Possibly Related Articles:
SCADA Vulnerabilities Network Security Update Industrial Control Systems Gleg exploit
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.