Intrusion Prevention

Eaton.9000XDrive.TLF.File.Buffer.Overflow

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in Eaton 9000X Drive.
The vulnerability is caused by an error when the vulnerable application handles a malformed TLF file. A remote attacker may be able to exploit this to execute arbitrary code on vulnerable systems via a crafted TLF file.

Affected Products

Eaton 9000X Drive 2.0.29
Eaton 9000X Drive 2.0.26
Eaton 9000X Drive 2.0.20

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/security-bulletins/Eaton_9000X_Drive.pdf

CVE References

CVE-2018-8847