iniNet SpiderControl SCADA Web Server 2.02 Local Privilege Escalation
High Nessus Plugin ID 88416
SynopsisThe web server running on the remote host is affected by a local privilege escalation vulnerability.
DescriptionAccording to its self-reported version, the iniNet SpiderControl SCADA Web Server running on the remote host is version 2.02. It is, therefore, affected by a flaw due to setting insecure permissions on the installation directory and files. A local attacker can exploit this to replace files, resulting in an escalation of privileges.
SolutionNo fix currently exists. Contact the vendor regarding a patch.