VAR-200712-0406
Vulnerability from variot - Updated: 2025-04-10 23:11Gesytec Easylon OPC Server before 2.3.44 does not properly validate server handles, which allows remote attackers to execute arbitrary code or cause a denial of service via unspecified network traffic to the OLE for Process Control (OPC) interface, probably related to free operations on arbitrary memory addresses through certain Remove functions, and read and write operations on arbitrary memory addresses through certain Set, Read, and Write functions. Gesytec Easylon OPC Server Does not properly validate the server handle, so arbitrary code may be executed or denial of service (DoS) There is a vulnerability that will be in a state. Easylon OPC Server is a system control server software used in the field of industrial automation. This issue affects versions prior to Easylon OPC Server 2.3.44.
2003: 2,700 advisories published 2004: 3,100 advisories published 2005: 4,600 advisories published 2006: 5,300 advisories published
How do you know which Secunia advisories are important to you?
The Secunia Vulnerability Intelligence Solutions allows you to filter and structure all the information you need, so you can address issues effectively.
The vulnerability is caused due to an error when validating server handles and can be exploited to e.g.
SOLUTION: Update to version 2.3.44 or later. ftp://ftp.gesytec.de/pub/opc/
PROVIDED AND/OR DISCOVERED BY: Neutralbit
ORIGINAL ADVISORY: VU#205073: http://www.kb.cert.org/vuls/id/205073
About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Show details on source website
{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200712-0406",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "opc server",
"scope": "eq",
"trust": 1.6,
"vendor": "gesytec easylon",
"version": "2.30.32"
},
{
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "gesytec",
"version": null
},
{
"model": "opc server",
"scope": "lt",
"trust": 0.8,
"vendor": "gesytec easylon",
"version": "2.3.44"
},
{
"model": null,
"scope": null,
"trust": 0.6,
"vendor": "none",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.4,
"vendor": "opc server",
"version": "2.30.32"
},
{
"model": "easylon opc server",
"scope": "eq",
"trust": 0.3,
"vendor": "gesytec",
"version": "2.30.32"
},
{
"model": "easylon opc server",
"scope": "eq",
"trust": 0.3,
"vendor": "gesytec",
"version": "2.0"
},
{
"model": "easylon opc server",
"scope": "ne",
"trust": 0.3,
"vendor": "gesytec",
"version": "2.3.44"
}
],
"sources": [
{
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CERT/CC",
"id": "VU#205073"
},
{
"db": "CNVD",
"id": "CNVD-2007-7002"
},
{
"db": "BID",
"id": "26876"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002540"
},
{
"db": "CNNVD",
"id": "CNNVD-200712-200"
},
{
"db": "NVD",
"id": "CVE-2007-4473"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:gesytec_easylon:opc_server",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2007-002540"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "NeutralBit http://www.neutralbit.com/",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200712-200"
}
],
"trust": 0.6
},
"cve": "CVE-2007-4473",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "CVE-2007-4473",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "18d7792a-2352-11e6-abef-000c29c66e3d",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.9 [IVD]"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2007-4473",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "CARNEGIE MELLON",
"id": "VU#205073",
"trust": 0.8,
"value": "4.50"
},
{
"author": "NVD",
"id": "CVE-2007-4473",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-200712-200",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1",
"trust": 0.2,
"value": "CRITICAL"
},
{
"author": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d",
"trust": 0.2,
"value": "CRITICAL"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CERT/CC",
"id": "VU#205073"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002540"
},
{
"db": "CNNVD",
"id": "CNNVD-200712-200"
},
{
"db": "NVD",
"id": "CVE-2007-4473"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Gesytec Easylon OPC Server before 2.3.44 does not properly validate server handles, which allows remote attackers to execute arbitrary code or cause a denial of service via unspecified network traffic to the OLE for Process Control (OPC) interface, probably related to free operations on arbitrary memory addresses through certain Remove functions, and read and write operations on arbitrary memory addresses through certain Set, Read, and Write functions. Gesytec Easylon OPC Server Does not properly validate the server handle, so arbitrary code may be executed or denial of service (DoS) There is a vulnerability that will be in a state. Easylon OPC Server is a system control server software used in the field of industrial automation. \nThis issue affects versions prior to Easylon OPC Server 2.3.44. \n\n----------------------------------------------------------------------\n\n2003: 2,700 advisories published\n2004: 3,100 advisories published\n2005: 4,600 advisories published\n2006: 5,300 advisories published\n\nHow do you know which Secunia advisories are important to you?\n\nThe Secunia Vulnerability Intelligence Solutions allows you to filter\nand structure all the information you need, so you can address issues\neffectively. \n\nThe vulnerability is caused due to an error when validating server\nhandles and can be exploited to e.g. \n\nSOLUTION:\nUpdate to version 2.3.44 or later. \nftp://ftp.gesytec.de/pub/opc/\n\nPROVIDED AND/OR DISCOVERED BY:\nNeutralbit\n\nORIGINAL ADVISORY:\nVU#205073:\nhttp://www.kb.cert.org/vuls/id/205073\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2007-4473"
},
{
"db": "CERT/CC",
"id": "VU#205073"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002540"
},
{
"db": "CNVD",
"id": "CNVD-2007-7002"
},
{
"db": "BID",
"id": "26876"
},
{
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "PACKETSTORM",
"id": "61853"
}
],
"trust": 3.6
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2007-4473",
"trust": 3.7
},
{
"db": "CERT/CC",
"id": "VU#205073",
"trust": 3.6
},
{
"db": "BID",
"id": "26876",
"trust": 1.9
},
{
"db": "SECUNIA",
"id": "28079",
"trust": 1.8
},
{
"db": "OSVDB",
"id": "42650",
"trust": 1.6
},
{
"db": "CNVD",
"id": "CNVD-2007-7002",
"trust": 1.0
},
{
"db": "CNNVD",
"id": "CNNVD-200712-200",
"trust": 1.0
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002540",
"trust": 0.8
},
{
"db": "XF",
"id": "39062",
"trust": 0.6
},
{
"db": "NSFOCUS",
"id": "11286",
"trust": 0.6
},
{
"db": "IVD",
"id": "7D75B1DE-463F-11E9-A03E-000C29342CB1",
"trust": 0.2
},
{
"db": "IVD",
"id": "18D7792A-2352-11E6-ABEF-000C29C66E3D",
"trust": 0.2
},
{
"db": "PACKETSTORM",
"id": "61853",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CERT/CC",
"id": "VU#205073"
},
{
"db": "CNVD",
"id": "CNVD-2007-7002"
},
{
"db": "BID",
"id": "26876"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002540"
},
{
"db": "PACKETSTORM",
"id": "61853"
},
{
"db": "CNNVD",
"id": "CNNVD-200712-200"
},
{
"db": "NVD",
"id": "CVE-2007-4473"
}
]
},
"id": "VAR-200712-0406",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2007-7002"
}
],
"trust": 0.1
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 1.0
}
],
"sources": [
{
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2007-7002"
}
]
},
"last_update_date": "2025-04-10T23:11:32.771000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.gesytec.de/"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2007-002540"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-119",
"trust": 1.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2007-002540"
},
{
"db": "NVD",
"id": "CVE-2007-4473"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.8,
"url": "http://www.kb.cert.org/vuls/id/205073"
},
{
"trust": 2.4,
"url": "http://www.neutralbit.com/en/rd/opctest/"
},
{
"trust": 1.6,
"url": "http://www.neutralbit.com/downloads/nb-nb-001-ext-opc%20security%20testing.pdf"
},
{
"trust": 1.6,
"url": "http://osvdb.org/42650"
},
{
"trust": 1.6,
"url": "http://www.securityfocus.com/bid/26876"
},
{
"trust": 1.6,
"url": "http://secunia.com/advisories/28079"
},
{
"trust": 1.0,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39062"
},
{
"trust": 0.8,
"url": "ftp://ftp.gesytec.de/pub/opc/"
},
{
"trust": 0.8,
"url": "http://www.cpni.gov.uk/docs/re-20050223-00157.pdf"
},
{
"trust": 0.8,
"url": "http://www.opcfoundation.org/default.aspx/01_about/01_whatis.asp?mid=aboutopc"
},
{
"trust": 0.8,
"url": "http://en.wikipedia.org/wiki/ole_for_process_control"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-4473"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-4473"
},
{
"trust": 0.6,
"url": "http://xforce.iss.net/xforce/xfdb/39062"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/11286"
},
{
"trust": 0.3,
"url": "http://www.gesytec.de/"
},
{
"trust": 0.1,
"url": "http://secunia.com/secunia_security_advisories/"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/28079/"
},
{
"trust": 0.1,
"url": "http://corporate.secunia.com/how_to_buy/38/vi/?ref=secadv"
},
{
"trust": 0.1,
"url": "http://secunia.com/product/16967/"
},
{
"trust": 0.1,
"url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
},
{
"trust": 0.1,
"url": "http://secunia.com/about_secunia_advisories/"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#205073"
},
{
"db": "BID",
"id": "26876"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002540"
},
{
"db": "PACKETSTORM",
"id": "61853"
},
{
"db": "CNNVD",
"id": "CNNVD-200712-200"
},
{
"db": "NVD",
"id": "CVE-2007-4473"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CERT/CC",
"id": "VU#205073"
},
{
"db": "CNVD",
"id": "CNVD-2007-7002"
},
{
"db": "BID",
"id": "26876"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002540"
},
{
"db": "PACKETSTORM",
"id": "61853"
},
{
"db": "CNNVD",
"id": "CNNVD-200712-200"
},
{
"db": "NVD",
"id": "CVE-2007-4473"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2007-12-14T00:00:00",
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"date": "2007-12-14T00:00:00",
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"date": "2007-12-14T00:00:00",
"db": "CERT/CC",
"id": "VU#205073"
},
{
"date": "2007-12-14T00:00:00",
"db": "CNVD",
"id": "CNVD-2007-7002"
},
{
"date": "2007-12-14T00:00:00",
"db": "BID",
"id": "26876"
},
{
"date": "2012-06-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2007-002540"
},
{
"date": "2007-12-18T00:56:59",
"db": "PACKETSTORM",
"id": "61853"
},
{
"date": "2007-12-17T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200712-200"
},
{
"date": "2007-12-17T21:46:00",
"db": "NVD",
"id": "CVE-2007-4473"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2008-01-10T00:00:00",
"db": "CERT/CC",
"id": "VU#205073"
},
{
"date": "2007-12-14T00:00:00",
"db": "CNVD",
"id": "CNVD-2007-7002"
},
{
"date": "2007-12-17T21:01:00",
"db": "BID",
"id": "26876"
},
{
"date": "2012-06-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2007-002540"
},
{
"date": "2007-12-18T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200712-200"
},
{
"date": "2025-04-09T00:30:58.490000",
"db": "NVD",
"id": "CVE-2007-4473"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200712-200"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Easylon OPC Server Arbitrary code execution vulnerability",
"sources": [
{
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2007-7002"
},
{
"db": "BID",
"id": "26876"
},
{
"db": "CNNVD",
"id": "CNNVD-200712-200"
}
],
"trust": 1.9
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Buffer overflow",
"sources": [
{
"db": "IVD",
"id": "7d75b1de-463f-11e9-a03e-000c29342cb1"
},
{
"db": "IVD",
"id": "18d7792a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNNVD",
"id": "CNNVD-200712-200"
}
],
"trust": 1.0
}
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.