Schneider Electric EcoStruxure Power Build Rapsody Stack-Based Buffer Overflow Vulnerability Allowing Arbitrary Code Execution

A stack-based buffer overflow vulnerability has been identified in Schneider Electric's EcoStruxure Power Build Rapsody software, specifically in versions through 2.7.12 FR. This vulnerability could allow local attackers to execute arbitrary code by exploiting memory corruption issues. The vulnerability is triggered when a user opens a malicious project file (SSD file) provided by the attacker.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution on the affected system.

Remediation

Users can upgrade to version 2.8.1 FR of EcoStruxure Power Build Rapsody, which includes a fix for this vulnerability. After installing the new version, a reboot is recommended. For those who choose not to apply the update, it is advised to store project files securely, restrict access to trusted users, use secure communication protocols when exchanging files, encrypt project files, verify the integrity of project files before use, and harden the workstation running the software.