FAQ: Autorun.cdd encrypted and often marked as a security problem
The autorun.cdd file is intentionally password protected to protect company know-how and to protect it from changes. autorun.cdd is not an executable file and is therefore not signed. For security reasons, this script file is encrypted and is loaded by the autorun.exe program. It is therefore a false positive detection in various cybersecurity tools.
When the stratonRT_Manager.exe is not needed it can simply delete it from the installation folder. When afterwards execute a build update is executed it will not be copied to the installation folder again.
The file can be found in the installation files:
FILEUPDATE\zenonScada\ProgramFilesX86\stratonRT_Manager.exe/AutoPlay\autorun.cdd
Related Articles
FAQ: CD_SVA_2022_1: Vulnerability in zenon Software platform
Summary COPA-DATA received a report from Security Researcher Ruben Santamarta detailing a security vulnerability for the zenon Logging Service which is part of the zenon platform standard deployment. Based on this vulnerability additional ...
FAQ: Are products in the zenon product family affected by the vulnerability, labelled BlastRADIUS?
The vulnerability labelled BlastRADIUS is a vulnerability in the RADIUS protocol, also known under the reference CVE-2024-3596. The zenon IIoT Services Identity Service supports an Identity Provider for authentication against RADIUS server, that can ...
CD_SVA_2023_3: Wibu Systems - CodeMeter Runtime - security vulnerability addressed
A report has been received for the following security vulnerability in the zenon software platform: CVE-2023-3935 Further details regarding the vulnerability, mitigation options and product fixes that may be available, can be found in the document ...
FAQ: Do COPA-DATA products use OpenSSL and if yes, are they affected by the Heartbleed vulnerability in OpenSSL?
There are components of COPA-DATA products that use parts of the OpenSSL library. The parts of the OpenSSL library that are used, include parts for certificate handling, encryption and secure connections. The following components in particular use ...
CD_SVA_2023_2: security vulnerabilities in the zenon platform
A report has been received for the following security vulnerabilities in the zenon software platform: CVE-2023-3321 CVE-2023-3323 CVE-2023-3324 Further details regarding the vulnerabilities, mitigation options and product fixes that may be available, ...