Flaw in Schneider Industrial Firewalls Allows Remote Code Execution

Advertisement


On Wednesday, at SecurityWeek’s 2016 ICS Cyber Security Conference, in a presentation meant to demonstrate that attackers could easily bypass defenses if proper ICS protection technologies are not in place, researchers at industrial security firm CyberX disclosed the existence of several important flaws.

One of them affects Schneider Electric’s ConneXium TCSEFEC family of industrial ethernet firewalls. The product is designed to help organizations protect their industrial networks, SCADA systems, automation systems and process control facilities against external threats.

Advertisement