CVE-2014-5208

Name of the Vulnerable Software and Affected Versions Yokogawa CENTUM CS 3000 versions through R3.09.50 Yokogawa CENTUM VP versions through R4.03.00 Yokogawa CENTUM VP versions R5.x through R5.04.00 Yokogawa Exaopc versions through R3.72.10

Description The issue is related to insufficient access control in the BKBCopyD.exe service, allowing remote attackers to perform unauthorized actions. This can include reading arbitrary files via a RETR operation, writing to arbitrary files via a STOR operation, or obtaining sensitive database location information via a PMODE operation.

Recommendations For Yokogawa CENTUM CS 3000 versions through R3.09.50, consider restricting access to the BKBCopyD.exe service to prevent unauthorized file operations. For Yokogawa CENTUM VP versions through R4.03.00, restrict access to the BKBCopyD.exe service to minimize the risk of exploitation. For Yokogawa CENTUM VP versions R5.x through R5.04.00, avoid using the RETR, STOR, and PMODE operations in the BKBCopyD.exe service until a fix is available. For Yokogawa Exaopc versions through R3.72.10, consider disabling the BKBCopyD.exe service as a temporary workaround until a patch is available.