Takebishi Electric DeviceXPlorer OPC Server Multiple Vulnerabilities

This script is Copyright (C) 2007-2012 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an application that is susceptible to
remote execution of arbitrary code.

Description :

The version of the Takebishi Electric DeviceXPlorer OPC server
installed on the remote Windows host reportedly contains flaws in its
data access methods that allow access to arbitrary portions of memory.

A remote attacker with access to the OPC interface may be able to
leverage these issues to discover sensitive information, crash the
affected service, or execute arbitrary code on the affected host.

See also :

http://www.neutralbit.com/en/rd/advisories/NB07-07.txt
http://www.neutralbit.com/en/rd/advisories/NB07-08.txt
http://www.neutralbit.com/en/rd/advisories/NB07-09.txt
http://www.neutralbit.com/en/rd/advisories/NB07-10.txt
http://www.neutralbit.com/en/rd/advisories/NB07-17.txt
http://www.faweb.net/us/opc/1231207.html

Solution :

Upgrade to version 3.12 build3 (3.12.003) or later of the appropriate
DeviceXPlorer OPC Server.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 5.5
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: SCADA

Nessus Plugin ID: 24872 ()

Bugtraq ID: 23037

CVE ID: CVE-2007-1319