Movicon < 11.2 Build 1084 Multiple Vulnerabilities

This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.

Synopsis :

The remote Windows host has a SCADA application that is affected by
multiple flaws.

Description :

The installed version of Movicon is older than 11.2 Build 1084, and
hence it is affected by multiple flaws. By sending a specially
crafted packet to the TcpUploadServer service (included with Movicon)
listening on port 10651, it might be possible for an unauthenticated
attacker to crash the service, retrieve sensitive information, or
execute arbitrary code on the remote system.

See also :

Solution :

Upgrade to Movicon 11.2 Build 1084 or later.

Risk factor :

High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.2
Public Exploit Available : true

Family: SCADA

Nessus Plugin ID: 52993 ()

Bugtraq ID: 46907

CVE ID: CVE-2011-2963

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial