This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The remote host is affected by a SQL injection vulnerability.
The remote host has a version of Schneider Electric Accutech Manager
installed that is affected by a SQL injection vulnerability. By
sending a specially crafted packet to 'RFManagerService' listening on
port 2536, an attacker is able to authenticate to the service and then
manipulate the software.
See also :
Configure the firewalls to only permit specific systems to access
ports 2536 and 2537.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : true
Nessus Plugin ID: 70921 ()
Bugtraq ID: 64684
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.