Progea Movicon < 11.4 Build 1150 Information Disclosure Vulnerability

medium Nessus Network Monitor Plugin ID 7128

Synopsis

A vulnerable version of Progea Movicon has been detected.

Description

The detected version of Progea Movicon contains an information disclosure vulnerability. This vulnerability is related to the TCPUploader module which could allow a remote and unauthenticated user to obtain OS version information.

Solution

Upgrade to Progea Movicon 11.4 Build 1150 or later.

Plugin Details

Severity: Medium

ID: 7128

Version: 1.0

Family: SCADA

Published: 6/20/2014

Updated: 8/16/2018

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/a:progea:movicon

Patch Publication Date: 4/19/2014

Vulnerability Publication Date: 4/19/2014

Reference Information

CVE: CVE-2014-0778

BID: 66934

Detections

Analytics