Schneider Electric ProClima < 6.1.7 Multiple Vulnerabilities
High Nessus Network Monitor Plugin ID 9973
SynopsisThe remote host is running an outdated version of Schneider Electric's ProClima application.
DescriptionThe version of Schneider Electric's ProClima application is prior to 6.1.7 and is affected by multiple vulnerabilities :
- Multiple unspecified remote buffer-overflow vulnerabilities exist because the application fails to properly validate user-supplied input. An attacker may be able to exploit these issues to execute arbitrary code in the context of the system using unspecified ActiveX controls, and even failed exploit attempts can result in denial-of-service conditions. (OSVDB 115995, OSVDB 115996, OSVDB 116781, OSVDB 116782, OSVDB 116783)
SolutionUpgrade to ProClima version 6.1.7 or later.