ID
VAR-E-201512-0467
CVE
| cve_id: | CVE-2015-7917 | Trust: 0.3 |
TITLE
OPC Systems.NET CVE-2015-7917 DLL Loading Local Privilege Escalation Vulnerability
Trust: 0.3
DESCRIPTION
OPC Systems.NET is prone to a local privilege-escalation vulnerability.
Attackers can exploit this issue remotely by placing the files in a remotely accessible SMB or WebDAV share location.
A local attacker can leverage this issue to execute arbitrary code with application privileges.
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | opc | model: | systems opc systems.net | scope: | eq | version: | 8.0.23 | Trust: 0.3 |
| vendor: | opc | model: | systems opc systems.net | scope: | eq | version: | 4.0.48 | Trust: 0.3 |
| vendor: | opc | model: | systems opc systems.net | scope: | eq | version: | 5.0 | Trust: 0.3 |
EXPLOIT
A general exploit technique has been documented by TheLeader and H.D. Moore for the Metasploit Project; please see the references for more information.
Trust: 0.3
PRICE
Free
Trust: 0.3
TYPE
Unknown
Trust: 0.3
CREDITS
Ivan Sanchez from Nullcode Team
Trust: 0.3
EXTERNAL IDS
| db: | ICS CERT | id: | ICSA-15-344-02 | Trust: 0.3 |
| db: | NVD | id: | CVE-2015-7917 | Trust: 0.3 |
| db: | BID | id: | 78909 | Trust: 0.3 |
REFERENCES
| url: | http://blogs.technet.com/b/msrc/archive/2010/08/21/microsoft-security-advisory-2269637-released.aspx | Trust: 0.3 |
| url: | http://blog.metasploit.com/2010/08/exploiting-dll-hijacking-flaws.html | Trust: 0.3 |
| url: | http://blogs.technet.com/b/srd/archive/2010/08/23/more-information-about-dll-preloading-remote-attack-vector.aspx | Trust: 0.3 |
| url: | https://ics-cert.us-cert.gov/advisories/icsa-15-344-02 | Trust: 0.3 |
| url: | http://www.opcsystems.com/opc_systems_net.htm | Trust: 0.3 |
| url: | http://blog.rapid7.com/?p=5325 | Trust: 0.3 |
SOURCES
| db: | BID | id: | 78909 |
LAST UPDATE DATE
2022-07-27T09:49:33.720000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 78909 | date: | 2015-12-10T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 78909 | date: | 2015-12-10T00:00:00 |