CVE-2014-0779

Name of the Vulnerable Software and Affected Versions Kepware KepServerEX 4 component in Schneider Electric StruxureWare SCADA Expert ClearSCADA versions 2010 R2 build 71.4165 through 2013 R2 build 74.5094

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash, via a crafted OPF file.

Recommendations For versions 2010 R2 build 71.4165 through 2013 R2 build 74.5094, as a temporary workaround, consider restricting the use of the PLC driver in ServerMain.exe to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.