Q5207 HF700R139137 - Combined hotfix for Kernel Point Count and ODBC Security Vulnerability

Summary:

HF700R139137 for CitectSCADA Version 7.00

This hotfix provides a fix for:

Bug 36958 - Incorrect point count in kernel.
Bug 38255 - Security vulnerability on citect port 20222 (ODBC port)

An intentionally malformed packet can cause a buffer overrun when directed at Citect's port 20222. This vulnerability has been secured. Users are reminded to
run Citect as intended on a secure isolated network.

After applying this hotfix this port will be disabled by default.

An additional citect.ini parameter has been introduced should you wish to enable this port.

To your citect ini please add:
[ODBC]
Server=1

Files Affected:

Client.dll Copy to Citect\bin
CSAPSI.dll Copy to citect\bin

Keywords:

Q5207 HF700R139137 - Combined hotfix for Kernel Point Count and ODBC Security Vulnerability

Related Links

Attachments