Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
NETxAutomation NETxEIB OPC Server before 3.0.1300 does not properly validate OLE for Process Control (OPC) server handles, which allows attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors involving the (1) IOPCSyncIO::Read, (2) IOPCSyncIO::Write, (3) IOPCServer::AddGroup, (4) IOPCServer::RemoveGroup, (5) IOPCCommon::SetClientName, and (6) IOPCGroupStateMgt::CloneGroup functions, which allow access to arbitrary memory. NOTE: the vectors might be limited to attackers with physical access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NETXEIB OPC Server句柄验证远程代码执行漏洞
Vulnerability Description
OPC服务器是工业制造领域中自动化和控制系统所广泛使用的数据访问控制工具。 NETxAUTOMATION所提供的OPC服务器(NETXEIB OPC Server)在实现以下OPC数据访问接口方式时存在多个安全漏洞: * IOPCSyncIO::Read * IOPCSyncIO::Write * IOPCServer::AddGroup * IOPCServer::RemoveGroup * IOPCCommon::SetClientName * IOPCGroupStateMgt::CloneGrou
CVSS Information
N/A
Vulnerability Type
N/A