Vulnerabilities > Netxautomation > Netxeib > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-03-21 | CVE-2007-1313 | Improper Input Validation vulnerability in Netxautomation Netxeib 3.0 NETxAutomation NETxEIB OPC Server before 3.0.1300 does not properly validate OLE for Process Control (OPC) server handles, which allows attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors involving the (1) IOPCSyncIO::Read, (2) IOPCSyncIO::Write, (3) IOPCServer::AddGroup, (4) IOPCServer::RemoveGroup, (5) IOPCCommon::SetClientName, and (6) IOPCGroupStateMgt::CloneGroup functions, which allow access to arbitrary memory. | 7.5 |