Multiple vulnerabilities in BACnet OPC Server

Описание

Multiple critical vulnerabilities have been found in BACnet OPC Server. Malicious users can exploit these vulnerabilities to execute arbitrary files and read&write local database.

Below is a complete list of vulnerabilities

1. An unknwon vulnerabilities can be exploited remotely via unknown vectors related to SOAP web interface;
2. Heap-based buffer overflow and format string vulnerability can be exploited remotely via a specially designed packet or string.

Первичный источник обнаружения

Связанные продукты

• BACnet-OPC-Server

Список CVE

• CVE-2015-0981
  critical
• CVE-2015-0979
  critical
• CVE-2015-0980
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com