InduSoft Web Studio < v8.1 + SP1 RCE
Critical Nessus Network Monitor Plugin ID 700241
SynopsisA vulnerable version of InduSoft Web Studio has been detected.
DescriptionInduSoft Web Studio versions prior to v8.1 + SP1 contain InduSoft Web Studio contain a stack-based buffer overflow vulnerability during tag, alarm, or event related actions such as read and write, with potential for code to be executed. The code would be executed under high privileges and could lead to a complete compromise of the InduSoft Web Studio server machine.
SolutionUpgrade to InduSoft WebStudio v8.1 SP1.