3 matches found
CVE-2015-0979
Summary (CVE-2015-0979) : A heap-based buffer overflow in the SOAP web interface of the SCADA Engine BACnet OPC Server prior to version 2.1.371.24 allows remote arbitrary code execution via a crafted packet. The affected component is the Windows Service SOAP interface; exploitation is remote and ...
CVE-2015-0981
SCADA Engine BACnet OPC Server prior to version 2.1.371.24 is affected by three vulnerabilities tied to the SOAP web interface: (1) CVE-2015-0981 Authentication bypass allowing remote read/write of database fields, (2) CWE-122 Heap-based Buffer Overflow, and (3) CWE-20 Improper Input Validation. ...
CVE-2015-0980
SCADA Engine BACnet OPC Server (BACnet OPC Server) before version 2.1.371.24 is affected by CVE-2015-0980 via a format-string vulnerability in the SOAP web interface (BACnOPCServer.exe). Exploitation could allow remote attackers to execute arbitrary code. The ICS-CERT advisory notes a fixed versi...