Siemens SIMATIC RF-MANAGER KeyHelp.ocx Buffer Overflow

medium Nessus Plugin ID 64683

Synopsis

The remote host has an ActiveX control installed that is affected by a buffer overflow vulnerability.

Description

The remote Siemens SIMATIC RF-MANAGER install has a third party ActiveX control installed (KeyHelp.ocx) that is affected by a buffer overflow vulnerability. A remote attacker may be able to execute arbitrary code by tricking a victim into opening a specially crafted web page.

Solution

Apply the vendor's patch.

See Also

http://www.nessus.org/u?9b4c828f

http://www.nessus.org/u?e2cfe7db

Plugin Details

Severity: Medium

ID: 64683

File Name: scada_siemens_rfmanager_activex.nbin

Version: 1.232

Type: local

Agent: windows

Family: SCADA

Published: 2/19/2013

Updated: 11/22/2024

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.5

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2013-0656

Vulnerability Information

CPE: cpe:/a:siemens:simatic_rf-manager

Required KB Items: SCADA/Apps/Siemens/rf-manager/Installed

Exploit Ease: No known exploits are available

Patch Publication Date: 1/11/2013

Vulnerability Publication Date: 1/11/2013

Reference Information

CVE: CVE-2013-0656

BID: 57324

ICSA: 13-014-01