Intrusion Prevention

Horner.Automation.Cscape.CSP.File.Buffer.Overflow

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in Horner Automation Cscape.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted csp file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted csp file.

Affected Products

version 9.80 SP2

Impact

System Compromise: Remote attackers can gain control of vulnerable systems

Recommended Actions

Refer to the ICS-CERT advisory for updates:
https://ics-cert.us-cert.gov/advisories/ICSA-18-354-01

CVE References

CVE-2018-19005