This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.
The remote host is affected by a denial of service vulnerability.
The Schneider Electric OPC Factory Server installed on the remote
host is prior to version 3.5 SP1. It is, therefore, affected by a
denial of service vulnerability due to multiple buffer overflow errors
in the 'opcautosa2.dll' ActiveX control. The buffer overflows are due
to improper validation of user-supplied input when handling long
arguments in the Connect() and GetOPCServers() functions. A remote
attacker can exploit this, via a specially crafted web page, to reboot
the server, resulting in a denial of service.
See also :
Upgrade to Schneider Electric OPC Factory Server (OFS) version 3.5
SP1 or later.
Risk factor :
High / CVSS Base Score : 7.8