Vulnerability Details : CVE-2011-3497
Public exploit exists!
service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary DLL functions via the XF function, possibly related to an insecure exposed method.
Vulnerability category: Information leak
Products affected by CVE-2011-3497
- cpe:2.3:a:measuresoft:scadapro:*:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.12:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.13:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.9:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.10:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.11:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.2.9:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.5:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.6:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.14:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.15:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:2.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.7:*:*:*:*:*:*:*
- cpe:2.3:a:measuresoft:scadapro:3.9.8:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-3497
22.94%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2011-3497
-
Measuresoft ScadaPro Remote Command Execution
Disclosure Date: 2011-09-16First seen: 2020-04-26exploit/windows/scada/scadapro_cmdexeThis module allows remote attackers to execute arbitrary commands on the affected system by abusing via Directory Traversal attack when using the 'xf' command (execute function). An attacker can execute system() from msvcrt.dll to upload a backdoor and gain remote co
CVSS scores for CVE-2011-3497
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2011-3497
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-3497
-
http://securityreason.com/securityalert/8382
Measuresoft ScadaPro arbitrary commands execution - CXSecurity.com
-
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-256-04.pdf
404 - File Not Found | CISAUS Government Resource
-
http://aluigi.altervista.org/adv/scadapro_1-adv.txt
Exploit
Jump to