Multiple components of Iconics SCADA Suite are prone to a Phantom DLL loading vulnerability. This issue arises from the applications improperly searching for and loading dynamic link libraries, potentially allowing an attacker to execute malicious code via a DLL with a matching name in an accessible search path. The affected components are:
MMXFax.exe * winfax.dll
MelSim2ComProc.exe
Sim2ComProc.dll
MMXCall_in.exe * libdxxmt.dll
libsrlmt.dll
CPE | Name | Operator | Version |
---|---|---|---|
iconics_suite | lt | 10.97.2 |