Schneider Electric Accutech Manager 'RFManagerService' SQL Injection

Critical Nessus Plugin ID 70921


The remote host is affected by a SQL injection vulnerability.


The remote host has a version of Schneider Electric Accutech Manager installed that is affected by a SQL injection vulnerability. By sending a specially crafted packet to 'RFManagerService' listening on port 2536, an attacker is able to authenticate to the service and then manipulate the software.


Configure the firewalls to only permit specific systems to access ports 2536 and 2537.

See Also

Plugin Details

Severity: Critical

ID: 70921

File Name: scada_schneider_electric_accutech_manager_sql.nbin

Version: $Revision: 1.23 $

Type: remote

Family: SCADA

Published: 2013/11/15

Modified: 2018/01/29

Dependencies: 17975

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:schneider-electric:accutech_manager

Excluded KB Items: global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2013/11/15

Vulnerability Publication Date: 2013/11/15

Reference Information

BID: 64684

OSVDB: 101772