CVE-2007-1319

Name of the Vulnerable Software and Affected Versions DeviceXPlorer OPC Server versions prior to 3.12 Build3

Description The issue affects the OPCDA interface in the DeviceXPlorer OPC Server, specifically the IOPCServer::RemoveGroup function, allowing remote attackers to execute arbitrary code via unspecified vectors involving access to arbitrary memory. This issue impacts multiple OPC Servers, including HIDIC, MELSEC, FA-M3, MODBUS, and SYSMAC.

Recommendations For versions prior to 3.12 Build3, update to version 3.12 Build3 or later to resolve the issue. As a temporary workaround, consider restricting access to the IOPCServer::RemoveGroup function until a patch is applied.