This script is Copyright (C) 2012 Tenable Network Security, Inc.
A SCADA application on the remote host is affected by multiple
The remote host has a version of Sielco Sistemi Winlog prior to
2.07.18 that is affected by the following vulnerabilities:
- A buffer overflow vulnerability exists in RunTime.exe
could allow an attacker to execute arbitrary code on the
remote host. It can be triggered by sending specially
crafted packets to port 46824. (CVE-2012-3815)
- There are multiple buffer overflows that can be
triggered by sending a specially crafted packet with a
negative integer after an opcode to port 46824. This
may give attackers the ability to execute arbitrary
code. (CVE-2012-4355, CVE-2012-4358)
See also :
Upgrade to WinLog 2.07.18 or later.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.3
Public Exploit Available : true
Nessus Plugin ID: 61494 ()
Bugtraq ID: 5381154212
CVE ID: CVE-2012-4355CVE-2012-4359CVE-2012-3815
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.