The US Department of Homeland Security is warning about vulnerabilities in a common SCADA (supervisory control and data acquisition) package that is used to remotely monitor and manage solar energy-generating power plants. The vulnerability was released without coordination with either the vendor or ICS-CERT. The software running on the affected devices is vulnerable to multiple security issues, that allow unauthenticated remote attackers to gain administrative access and execute arbitrary commands. The vulnerable system is the Schneider Electric Ezylog SCADA management server.
Source: https://thehackernews.com/2012/10/scada-hacking-exploit-released-to-hack.html