Knud Højgaard

**Name of the Vulnerable Software and Affected Versions** Procyon SCADA versions 1.06 through 1.14 **Description** The issue allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password to the "Telnet (TCP/23)" port. This is triggered by an out-of-bounds read or write, leading to a stack-based buffer overflow. **Recommendations** For Procyon SCADA versions 1.06 through 1.14, update to version 1.14 or later to resolve the issue.