Schneider Electric ClearSCADA Uncontrolled Resource Consumption Vulnerability

CVEs (1)

Remediations

• Schneider Electric has fixed this issue in the latest released software version of SCADA Expert ClearSCADA 2013 R2.
• ClearSCADA users should contact the local Schneider Electric office to obtain the latest software version for ClearSCADA
• alternatively this new version is available for direct download from the Schneider Electric Web site. To upgrade, customers are required to complete and submit an online form available here: (http://telemetry.schneider-electric.com/id2/form/CMIform.html)
• General instructions on how to upgrade the ClearSCADA license are available here: (http://resourcecenter.controlmicrosystems.com/display/CS/Updating+Your+ClearSCADA+License)
• Detailed instructions on how to upgrade a ClearSCADA installation are available here: (http://resourcecenter.controlmicrosystems.com/display/public/CS/SCADA+Expert+ClearSCADA+2013+R2+Upgrade+Strategy)
• Schneider Electric advises all ClearSCADA users to take steps to secure the interfaces to the ClearSCADA system. The following guidelines should be taken as a starting point only in establishing an appropriate level of system security: Monitor DNP3 traffic and system Event Journal to detect excessive amounts of traffic/logging that may be representative of a fuzzing attack. Upgrade the ClearSCADA server to SCADA Expert ClearSCADA 2013 R2 or newer, or Service Packs released later than November 2013.
• Schneider Electric has also published security notification SEVD-2013-339-01.
• The researchers suggest blocking DNP3 traffic from traversing onto business or corporate networks through the use of an intrusion prevention system or firewall with DNP3-specific rule sets to add an additional layer of protection.

Affected Vendors

Affected Products (7)