Stories
Slash Boxes
Comments

SoylentNews is people

posted by Fnord666 on Thursday August 31 2017, @11:54AM   Printer-friendly
from the don't-touch-that-VI-(file) dept.

Submitted via IRC for TheMightyBuzzard

Cory Duplantis of Cisco Talos unearthed a LabVIEW code execution flaw which can be triggered by the victim opening a specially crafted VI file.

LabVIEW, the widely used system design and development platform developed by National Instruments, sports a memory corruption vulnerability that could lead to code execution.

LabVIEW is commonly used for building data acquisition, instrument control, and industrial automation systems on a variety of operating systems: Windows, macOS, Linux and Unix.

The vulnerability was discovered by Cory Duplantis of Cisco Talos earlier this year, and reported to the company.

It can be triggered by the victim opening a specially crafted VI file – a proprietary file format that's comparable to the EXE file format.

"Although there is no published specification for the [VI] file format, inspecting the files shows that they contain a section named 'RSRC', presumably containing resource information," Cisco noted.

"Modulating the values within this section of a VI file can cause a controlled looping condition resulting in an arbitrary null write. This vulnerability can be used by an attacker to create a specially crafted VI file that when opened results in the execution of code supplied by the attacker. The consequences of a successful compromise of a system that interacts with the physical world, such as a data acquisition and control systems, may be critical to safety."

More details about the flaw can be found in this report. It affects the latest stable LabVIEW version (LabVIEW 2016 version 16.0), but it's possible that earlier iterations are also vulnerable.

Additional Information:
http://blog.talosintelligence.com/2017/08/vulnerability-spotlight-code-execution.html
CVE-2017-2779

Source: https://www.helpnetsecurity.com/2017/08/30/labview-code-execution-flaw/


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: -1, Offtopic) by Anonymous Coward on Thursday August 31 2017, @02:46PM (3 children)

    by Anonymous Coward on Thursday August 31 2017, @02:46PM (#562134)

    Do you know what "Begs the question" is supposed to mean?

    Starting Score:    0  points
    Moderation   -1  
       Offtopic=1, Total=1
    Extra 'Offtopic' Modifier   0  

    Total Score:   -1  
  • (Score: -1, Offtopic) by Anonymous Coward on Thursday August 31 2017, @03:18PM (2 children)

    by Anonymous Coward on Thursday August 31 2017, @03:18PM (#562146)

    No... Do I care? Even less... I do it to see you cockroaches come out of the woodwork. As always, thank you for your participation.

    • (Score: -1, Offtopic) by Anonymous Coward on Thursday August 31 2017, @04:23PM (1 child)

      by Anonymous Coward on Thursday August 31 2017, @04:23PM (#562165)

      It's OK, buddy. You'll get over it.

      • (Score: -1, Offtopic) by Anonymous Coward on Thursday August 31 2017, @05:03PM

        by Anonymous Coward on Thursday August 31 2017, @05:03PM (#562187)

        Butthurt? I can empathize, but I really don't feel your pain...