Takebishi DeviceXPlorer OPC Server Lets Remote Users Modify Memory to Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1017793 |
|
SecurityTracker URL: http://securitytracker.com/id/1017793
|
|
CVE Reference:
CVE-2007-1319
(Links to External Site)
|
Date: Mar 19 2007
|
Impact:
Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): prior to 3.12 Build3
|
Description:
A vulnerability was reported in Takebishi DeviceXPlorer OPC Server. A remote user can execute arbitrary code on the target system.
A remote user can send specially crafted data via the OPCDA inteface to access arbitrary memory and potentially execute arbitrary code on the target system. The code will run with the privileges of the target service.
The following products are affected:
DeviceXPlorer MELSEC OPC Server
DeviceXPlorer SYSMAC OPC Server
DeviceXPlorer FA-M3 OPC Server
DeviceXPlorer TOYOPUC OPC Server
DeviceXPlorer HIDIC OPC Server
DeviceXPlorer MODBUS OPC Server
US-CERT indicates that neutralbit reported this vulnerability.
|
Impact:
A remote user can execute arbitrary code on the target system.
|
Solution:
The vendor has issued a fixed version (3.12 Build3).
The Takebishi advisory is available at:
http://www.faweb.net/us/opc/1231207.html
|
Vendor URL: www.faweb.net/us/opc/1231207.html (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
Date: Mon, 19 Mar 2007 11:09:04 -0500
Subject: Takebishi Electric DeviceXplorer OPC Server fails to properly validate OPC server handles
|
http://www.kb.cert.org/vuls/id/926551
CVE-2007-1319
|
|
