CertccCVE-2007-1319CVE-2007-1319
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
97.4%
Unspecified vulnerability in the IOPCServer::RemoveGroup function in the OPCDA interface in Takebishi Electric DeviceXPlorer OLE for Process Control (OPC) Server before 3.12 Build3 allows remote attackers to execute arbitrary code via unspecified vectors involving access to arbitrary memory. NOTE: this issue affects the (1) HIDIC, (2) MELSEC, (3) FA-M3, (4) MODBUS, and (5) SYSMAC OPC Servers.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| takebishi_corporation | devicexplorer_opc_server | * | cpe:2.3:a:takebishi_corporation:devicexplorer_opc_server:*:*:*:*:*:*:*:* |
| takebishi_corporation | devicexplorer_opc_server | 3.12_build1 | cpe:2.3:a:takebishi_corporation:devicexplorer_opc_server:3.12_build1:*:*:*:*:*:*:* |
References
secunia.com/advisories/24570
www.faweb.net/us/opc/1231207.html
www.kb.cert.org/vuls/id/926551
www.neutralbit.com/advisories/NB07-07.txt
www.neutralbit.com/advisories/NB07-08.txt
www.neutralbit.com/advisories/NB07-09.txt
www.neutralbit.com/advisories/NB07-10.txt
www.neutralbit.com/advisories/NB07-17.txt
www.securityfocus.com/archive/1/463537/100/0/threaded
www.securityfocus.com/archive/1/463546/100/0/threaded
www.securityfocus.com/archive/1/463550/100/0/threaded
www.securityfocus.com/archive/1/463556/100/0/threaded
www.securityfocus.com/archive/1/463559/100/0/threaded
www.securityfocus.com/bid/23037
www.securitytracker.com/id?1017793
www.vupen.com/english/advisories/2007/1029
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
97.4%