The remote host has a version of RSLinx Classic installed that is prior to 4.00.01. It is, therefore, affected by a local privilege escalation vulnerability due to an unquoted path for a Windows service.
A local attacker can gain elevated privileges by inserting an executable file in the path of the affected service.
Binary data scada_rslinx_classic_4_00_01.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
rockwellautomation | rslinx_classic | cpe:/a:rockwellautomation:rslinx_classic |