You are here

LCDS – Leão Consultoria e Desenvolvimento de Sistemas Ltda ME Laquis SCADA (ICSA-18-289-01) – Product Used in the Water and Wastewater and Energy Sectors

LCDS – Leão Consultoria e Desenvolvimento de Sistemas Ltda ME Laquis SCADA (ICSA-18-289-01) – Product Used in the Water and Wastewater and Energy Sectors

Created: Thursday, October 18, 2018 - 06:25
Categories:
Cybersecurity

The NCCIC has released an advisory on untrusted pointer dereference, out-of-bounds read, integer overflow to buffer overflow, path traversal, out-of-bounds write, and stack-based buffer overflow vulnerabilities in LCDS – Leão Consultoria e Desenvolvimento de Sistemas Ltda ME Laquis SCADA. Smart Security Manager Versions 4.1.0.3870 and prior are affected. Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code, crash the system, or write controlled content to the target system. LCDS recommends that users update to Version 4.1.0.4114. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities. NCCIC/ICS-CERT.