CVE-2016-5787
Description
GE Proficy HMI/SCADA CIMPLICITY before 8.2 SIM 27 mishandles service DACLs, allowing local users to modify service configuration and execute arbitrary code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
GE Proficy HMI/SCADA CIMPLICITY before 8.2 SIM 27 mishandles service DACLs, allowing local users to modify service configuration and execute arbitrary code.
Vulnerability
GE Proficy HMI/SCADA CIMPLICITY versions before 8.2 SIM 27 suffer from improper privilege management (CWE-269) in the handling of service discretionary access control lists (DACLs). This flaw allows local users to modify the configuration of the CIMPLICITY service. Affected versions include CIMPLICITY Version 8.2, SIM 26 or earlier [1].
Exploitation
An attacker must have local access to the system as an authenticated user. By exploiting the weak service DACLs, the attacker can modify the CIMPLICITY service configuration via unspecified vectors. Public exploit code is known to be available, increasing the risk of active exploitation [1].
Impact
Successful exploitation enables an authenticated local user to alter the CIMPLICITY service configuration and launch any executable on the system as a service. This can lead to privilege escalation and arbitrary code execution, potentially compromising the entire system [1].
Mitigation
GE released version 8.2 SIM 27 in August 2014 to address this vulnerability. Users should upgrade to CIMPLICITY Version 8.2 SIM 27 or later. No workarounds are documented. Given the public availability of exploit code, organizations should prioritize patching [1].
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1- Range: <8.2 SIM 27
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"Mishandled service DACLs expose the CIMPLICITY service configuration to modification by local users."
Attack vector
A local authenticated user can modify the CIMPLICITY service configuration because the service's DACLs are mishandled [CWE-668]. This allows the attacker to edit the service configuration and launch any executable on the system as a service [ref_id=1]. The attack requires local access and user interaction to load a malicious file, but no special privileges beyond being an authenticated user on the system [ref_id=1].
Affected code
The advisory does not specify exact file paths or function names. The vulnerability exists in the CIMPLICITY service DACL (Discretionary Access Control List) handling in GE Proficy HMI/SCADA–CIMPLICITY versions 8.2 SIM 26 and earlier [ref_id=1]. The service configuration is improperly protected, allowing local modification.
What the fix does
GE released CIMPLICITY Version 8.2, SIM 27 in August 2014 to mitigate this vulnerability [ref_id=1]. The advisory does not include a patch diff, but the fix addresses the improper service DACL handling so that local users cannot modify the CIMPLICITY service configuration [ref_id=1]. GE recommends upgrading to version 8.2 SIM 27 or later, with the latest being SIM 43 [ref_id=1].
Preconditions
- networkAttacker must have local access to the system running the affected CIMPLICITY version
- authAttacker must be an authenticated user on the system
- inputUser interaction is required to load a malicious file
Generated on May 25, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
3- www.securityfocus.com/bid/91727nvdBroken LinkThird Party AdvisoryVDB Entry
- ge-ip.force.com/communities/en_US/Article/GE-Digital-Security-Advisory-GED-16-01nvdPermissions RequiredVendor Advisory
- ics-cert.us-cert.gov/advisories/ICSA-16-194-02nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.