Remote Code Execution via Format String Vulnerability in SCADA Engine BACnet OPC Server
CVE-2015-0980 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:C
Format string vulnerability in BACnOPCServer.exe in the SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to execute arbitrary code via format string specifiers in a request.
Learn more about our Web App Pen Testing.