Summary
This host is installed with Indusoft Web Studio and is prone to multiple remote code execution vulnerabilities.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code within the context of the affected application.
Impact Level: Application.
Solution
Install the hotfix from below link
http://www.indusoft.com/hotfixes/hotfixes.php
*****
NOTE: Ignore this warning, if above mentioned patch is manually applied.
*****
Insight
The flaws are due to
- An error in 'CEServer component'. When handling the remove File operation (0x15) the process blindly copies user supplied data to a fixed-length buffer on the stack.
- An error in remote agent component (CEServer.exe). When handling incoming requests the process fails to perform any type of authentication, which allows direct manipulation and creation of files on disk, loading of arbitrary DLLs and process control.
Affected
InduSoft Web Studio version 6.1 and 7.0
References
Severity
Classification
-
CVE CVE-2011-4051, CVE-2011-4052 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Flash Player Code Execution and DoS Vulnerabilities (Linux)
- Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Windows)
- Adobe AIR Multiple Vulnerabilities -01 Feb13 (Windows)
- Adobe Air Multiple Vulnerabilities -01 May 13 (Windows)
- Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)