Movicon < 11.2 Build 1084 Multiple Vulnerabilities

This script is Copyright (C) 2011-2012 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has a SCADA application that is affected by
multiple flaws.

Description :

The installed version of Movicon is older than 11.2 Build 1084, and
hence it is affected by multiple flaws. By sending a specially
crafted packet to the TcpUploadServer service (included with Movicon)
listening on port 10651, it might be possible for an unauthenticated
attacker to crash the service, retrieve sensitive information, or
execute arbitrary code on the remote system.

See also :

http://www.us-cert.gov/control_systems/pdf/ICSA-11-056-01.pdf

Solution :

Upgrade to Movicon 11.2 Build 1084 or later.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 6.2
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: SCADA

Nessus Plugin ID: 52993 ()

Bugtraq ID: 46907

CVE ID: CVE-2011-2963