Schneider Electric released new firmware to mitigate a memory corruption vulnerability in its VAMPSET, according to a report with ICS-CERT.
VAMPSET, versions prior to v2.2.189 suffer from the issue with the setting and configuration software.
Kushal Arvind Shah from Fortinet’s Fortiguard Labs reported this vulnerability directly to Schneider Electric.
Successful exploitation of this vulnerability could allow a local attacker to cause the software to enter a denial-of-service condition. The Windows operating system remains operational through the attack.
No known public exploits specifically target this vulnerability and it is not remotely exploitable. However, an attacker with low skill level could leverage the vulnerability.
VAMPSET is susceptible to a memory corruption vulnerability when a corrupted settings file is loaded. This vulnerability causes the software to halt or not start when trying to open the corrupted file.
CVE-2017-7967 is the case number assigned to this vulnerability, which has a CVSS v3 base score of 5.6.
VAMPSET sees use mainly in the energy sector. It sees action on a global basis.
Schneider Electric updated the VAMPSET tool in order to recognize malformed setting files. A new version of firmware with the fix for this vulnerability is available for download.
After the user installs the new version of firmware, when a malformed file is loaded VAMPSET will remain operational and report to the user: “Cannot open file.”
Paris, France-based Schneider Electric has issued Security Notification SEVD-2017-061-01, which contains additional information.