7T Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability

Bugtraq ID:	51438
Class:	Design Error
CVE:	CVE-2011-4053
Remote:	Yes
Local:	No
Published:	Jan 16 2012 12:00AM
Updated:	Jan 16 2012 12:00AM
Credit:	Kuang-Chun Hung
Vulnerable:	7-Technologies Interactive Graphical SCADA System 9.0.0.11200 7-Technologies Interactive Graphical SCADA System 9.0.0.11143 7-Technologies Interactive Graphical SCADA System 9.0.0.11129 7-Technologies Interactive Graphical SCADA System 9 7-Technologies Interactive Graphical SCADA System 8 7-Technologies Interactive Graphical SCADA System 7 7-Technologies Interactive Graphical SCADA System 0
Not Vulnerable:	7-Technologies Interactive Graphical SCADA System 9.0.0.11291

7T Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability

7T Interactive Graphical SCADA System is prone to a vulnerability which allows attackers to execute arbitrary code.

An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic Link Library (DLL) file.

7T Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability

Attackers must trick a user into opening a file on a remote WebDAV or SMB share to exploit this issue.

7T Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability

Solution:
Updates are available. Please see the references for details.

7T Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability

References:

• 7T Interactive Graphical SCADA System Homepage (7-Technologies)
  
• Application DLL Load Hijacking (HD Moore)
  
• Exploiting DLL Hijacking Flaws (hdm)
  
• More information about the DLL Preloading remote attack vector (Microsoft)
  
• ICSA-11-353-01�??7-TECHNOLOGIES INTERACTIVE GRAPHICAL DLL HIJACKING (Kuang-Chun Hun)