SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Honeywell EBI HscRemoteDeploy ActiveX LaunchInstaller Method Invocation

Category: WEB-CLIENT      

An ActiveX control in HscRemoteDeploy.dll in Honeywell Enterprise Buildings Integrator (EBI) R310, R400.2, R410.1, and R410.2; SymmetrE R310, R410.1, and R410.2; ComfortPoint Open Manager (aka CPO-M) Station R100; and HMIWeb Browser client packages allows remote attackers to execute arbitrary code via a crafted HTML document.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0108


Relevant Information