26 matches found
EUVD-2015-0988
Malware in sbrugna...
EUVD-2015-0989
Malware in sbrugna...
EUVD-2015-0987
Malware in sbrugna...
SCADA Engine BACnet OPC Server Vulnerabilities
OVERVIEW Independent researcher Josep Pi Rodriguez has identified three vulnerabilities in the SCADA Engine BACnet OPC Server application. SCADA Engine has produced a new software version that mitigates these vulnerabilities. Josep Pi Rodriguez has tested the new software version to validate that...
KLA10502 Multiple vulnerabilities in BACnet OPC Server
Multiple critical vulnerabilities have been found in BACnet OPC Server. Malicious users can exploit these vulnerabilities to execute arbitrary files and read&write local database. Below is a complete list of vulnerabilities 1. An unknwon vulnerabilities can be exploited remotely via unknown vecto...
CVE-2015-0981
The SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to bypass authentication and read or write to arbitrary database fields via unspecified vectors...
CVE-2015-0980
Format string vulnerability in BACnOPCServer.exe in the SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to execute arbitrary code via format string specifiers in a request...
CVE-2015-0979
Heap-based buffer overflow in the SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to execute arbitrary code via a crafted packet...
Format string
Format string vulnerability in BACnOPCServer.exe in the SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to execute arbitrary code via format string specifiers in a request...
Heap overflow
Heap-based buffer overflow in the SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to execute arbitrary code via a crafted packet...
CVE-2015-0980
SCADA Engine BACnet OPC Server (BACnet OPC Server) before version 2.1.371.24 is affected by CVE-2015-0980 via a format-string vulnerability in the SOAP web interface (BACnOPCServer.exe). Exploitation could allow remote attackers to execute arbitrary code. The ICS-CERT advisory notes a fixed versi...
CVE-2015-0981
The SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to bypass authentication and read or write to arbitrary database fields via unspecified vectors...
BACnet OPC Client Buffer Overflow
No description provided by source. $Id: bacnetcsv.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
BACnet OPC Client Buffer Overflow Exploit
No description provided by source. !/usr/bin/python bacnet.py BACnet OPC Client Buffer Overflow Exploit Jeremy Brown 0xjbrown41-gmail-com Sept 2010 After communicating via several emails with the vendor, sharing details about the vulnerability, as well as proof-of-concept code I also offered to...
Scada Engine BACnet OPC Client SCADA Remote Code Execution (CVE-2010-4740)
A buffer overflow vulnerability has been reported in SCADA Engine's BACnet OPC Client. The vulnerability is due to a boundary check error. A remote attacker may exploit this issue by sending specially crafted malicious file to be opened using the affected product. Successful exploitation could...
Stack overflow
Stack-based buffer overflow in WTclient.dll in SCADA Engine BACnet OPC Client before 1.0.25 allows user-assisted remote attackers to execute arbitrary code via a crafted .csv file, related to a status log message...
CVE-2010-4740
Stack-based buffer overflow in WTclient.dll in SCADA Engine BACnet OPC Client before 1.0.25 allows user-assisted remote attackers to execute arbitrary code via a crafted .csv file, related to a status log message...
CVE-2010-4740
CVE-2010-4740 describes a stack-based buffer overflow in WTclient.dll of SCADA Engine’s BACnet OPC Client prior to 1.0.25, enabling a user‑assisted remote attacker to execute arbitrary code by processing a specially crafted .csv file. Public references confirm the vulnerability affects SCADA Engi...
BACnet OPC Client - Local Buffer Overflow (Metasploit) (2)
$Id: bacnetcsv.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
BACnet OPC Client Buffer Overflow
$Id: bacnetcsv.rb 10990 2010-11-11 20:09:15Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...