7-Technologies IGSS < ODBC Remote Memory Corruption

This script is Copyright (C) 2011-2015 Tenable Network Security, Inc.

Synopsis :

The remote Windows host contains a SCADA application that is affected
by a memory corruption vulnerability.

Description :

The installed version of IGSS from 7-Technologies is earlier than As such, it potentially has a memory corruption error in
the Open Database Connectivity (ODBC) component listening on TCP port

Using specially crafted packets, an unauthenticated, remote attacker
could leverage this issue to execute arbitrary code with
administrative privileges.

See also :


Solution :

Apply the IGSS Update to upgrade to IGSS version or

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.8
Public Exploit Available : true

Family: SCADA

Nessus Plugin ID: 54645 ()

Bugtraq ID: 47960

CVE ID: CVE-2011-2214