The remote host has the Honeywell ‘HscRemoteDeploy.dll’ ActiveX control, which is affected by a vulnerability in the ‘LaunchInstaller()’ function that can be utilized to execute arbitrary code by tricking a victim into opening a specially crafted HTML document.
Binary data scada_honeywell_hscremotedeploy_activex.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
honeywell | enterprise_buildings_integrator | cpe:/a:honeywell:enterprise_buildings_integrator |