CVE-2007-1319 Information

Description

Unspecified vulnerability in the IOPCServer::RemoveGroup function in the OPCDA interface in Takebishi Electric DeviceXPlorer OLE for Process Control (OPC) Server before 3.12 Build3 allows remote attackers to execute arbitrary code via unspecified vectors involving access to arbitrary memory. NOTE: this issue affects the (1) HIDIC (2) MELSEC (3) FA-M3 (4) MODBUS and (5) SYSMAC OPC Servers.

Reference

http://secunia.com/advisories/24570 http://www.faweb.net/us/opc/1231207.html http://www.kb.cert.org/vuls/id/926551 http://www.neutralbit.com/advisories/NB07-07.txt http://www.neutralbit.com/advisories/NB07-08.txt http://www.neutralbit.com/advisories/NB07-09.txt http://www.neutralbit.com/advisories/NB07-10.txt http://www.neutralbit.com/advisories/NB07-17.txt http://www.securityfocus.com/archive/1/463537/100/0/threaded http://www.securityfocus.com/archive/1/463546/100/0/threaded http://www.securityfocus.com/archive/1/463550/100/0/threaded http://www.securityfocus.com/archive/1/463556/100/0/threaded http://www.securityfocus.com/archive/1/463559/100/0/threaded http://www.securityfocus.com/bid/23037 http://www.securitytracker.com/id?1017793 http://www.vupen.com/english/advisories/2007/1029