CVE-2007-1319

Sažetak

Unspecified vulnerability in the IOPCServer::RemoveGroup function in the OPCDA interface in Takebishi Electric DeviceXPlorer OLE for Process Control (OPC) Server before 3.12 Build3 allows remote attackers to execute arbitrary code via unspecified vectors involving access to arbitrary memory. NOTE: this issue affects the (1) HIDIC, (2) MELSEC, (3) FA-M3, (4) MODBUS, and (5) SYSMAC OPC Servers.

Reference

http://secunia.com/advisories/24570
http://www.faweb.net/us/opc/1231207.html
http://www.kb.cert.org/vuls/id/926551
http://www.neutralbit.com/advisories/NB07-07.txt
http://www.neutralbit.com/advisories/NB07-08.txt
http://www.neutralbit.com/advisories/NB07-09.txt
http://www.neutralbit.com/advisories/NB07-10.txt
http://www.neutralbit.com/advisories/NB07-17.txt
http://www.securityfocus.com/archive/1/463537/100/0/threaded
http://www.securityfocus.com/archive/1/463546/100/0/threaded
http://www.securityfocus.com/archive/1/463550/100/0/threaded
http://www.securityfocus.com/archive/1/463556/100/0/threaded
http://www.securityfocus.com/archive/1/463559/100/0/threaded
http://www.securityfocus.com/bid/23037
http://www.securitytracker.com/id?1017793
http://www.vupen.com/english/advisories/2007/1029

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

16-10-2018 - 16:37

Objavljeno

19-03-2007 - 22:19