Vulnerability Description
Unspecified vulnerability in the Modbus/TCP Diagnostic function in MiniHMI.exe for the Automated Solutions Modbus Slave ActiveX Control before 1.5 allows remote attackers to corrupt the heap and possibly execute arbitrary code via malformed Modbus requests to TCP port 502.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Automated Solutions | Modbus Slave Activex Control | <= 1.4 |
Related Weaknesses (CWE)
References
- http://dvlabs.tippingpoint.com/advisory/TPTI-07-15Patch
- http://osvdb.org/38259
- http://www.automatedsolutions.com/pub/asmbslv/ReadMe.htmPatch
- http://www.kb.cert.org/vuls/id/981849US Government Resource
- http://www.nessus.org/plugins/index.php?view=single&id=26066
- http://www.securityfocus.com/archive/1/479967/100/0/threaded
- http://www.securityfocus.com/bid/25713
- http://www.securitytracker.com/id?1018707
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36677
- http://dvlabs.tippingpoint.com/advisory/TPTI-07-15Patch
- http://osvdb.org/38259
- http://www.automatedsolutions.com/pub/asmbslv/ReadMe.htmPatch
- http://www.kb.cert.org/vuls/id/981849US Government Resource
- http://www.nessus.org/plugins/index.php?view=single&id=26066
- http://www.securityfocus.com/archive/1/479967/100/0/threaded
FAQ
What is CVE-2007-4827?
CVE-2007-4827 is a vulnerability with a CVSS score of 7.5 (HIGH). Unspecified vulnerability in the Modbus/TCP Diagnostic function in MiniHMI.exe for the Automated Solutions Modbus Slave ActiveX Control before 1.5 allows remote attackers to corrupt the heap and possi...
How severe is CVE-2007-4827?
CVE-2007-4827 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4827?
Check the references section above for vendor advisories and patch information. Affected products include: Automated Solutions Modbus Slave Activex Control.