Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4827

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4827
Last Modified 15 Nov 2008 01:58:40
Published 19 Sep 2007 02:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4827

Summary

Unspecified vulnerability in the Modbus/TCP Diagnostic function in MiniHMI.exe for the Automated Solutions Modbus Slave ActiveX Control before 1.5 allows remote attackers to corrupt the heap and possibly execute arbitrary code via malformed Modbus requests to TCP port 502.

Vulnerable Systems

Application

  • Automated Solutions Modbus Slave Activex Control 1.4


References

CERT-VN - VU#981849

CONFIRM - http://www.automatedsolutions.com/pub/asmbslv/ReadMe.htm

MISC - http://dvlabs.tippingpoint.com/advisory/TPTI-07-15

BID - 25713

OSVDB - 38259

XF - modbus-tcpslave-bo(36677)

SECTRACK - 1018707

BUGTRAQ - 20070918 TPTI-07-15: Automated Solutions Modbus TCP Slave ActiveX Control Heap Corruption Vulnerability

MISC - http://www.nessus.org/plugins/index.php?view=single&id=26066


Last Updated: 27 May 2016 10:45:58