Schneider Electric Multiple Products Buffer Overflow

High Nessus Plugin ID 81107


The remote host is affected by a buffer overflow.


The remote host has Schneider Electric software installed that is affected by a stack-based buffer overflow vulnerability in file 'isObjectModel.dll' of the DTM development kit. This flaw can be exploited by a remote attacker to execute arbitrary code.


Apply the vendor-supplied patch.

See Also

Plugin Details

Severity: High

ID: 81107

File Name: scada_schneider_electric_cve_2014_9200.nbin

Version: $Revision: 1.107 $

Type: local

Family: SCADA

Published: 2015/01/30

Modified: 2018/03/13

Dependencies: 13855

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:schneider-electric:somachine, cpe:/a:schneider-electric:somove, cpe:/a:schneider-electric:unity_pro

Required KB Items: SMB/Registry/Enumerated

Patch Publication Date: 2015/01/09

Vulnerability Publication Date: 2015/01/09

Reference Information

CVE: CVE-2014-9200

BID: 72335

OSVDB: 117017

ICSA: 15-027-02