Measuresoft ScadaPro < 188.8.131.52 service.exe Multiple Vulnerabilities (credentialed check)
Critical Nessus Plugin ID 59558
SynopsisThe remote Windows host has an application installed with multiple vulnerabilities.
DescriptionThe remote Windows host has a version of Measuresoft ScadaPro prior to version 184.108.40.206. As such, it reportedly has multiple vulnerabilities in service.exe that can be remotely exploited. This includes multiple stack-based buffer overflows and several poorly implemented commands that can be executed without authentication remotely that allow complete access to files and the ability to execute arbitrary commands.
SolutionUpgrade to ScadaPro 220.127.116.11 or later.