HTTP: Schneider Electric SoMachine HVAC AxEditGrid Unsafe ActiveX Control
This signature detects HTTP traffic containing vulnerable AxEditGrid ActiveX control. Malicious Web sites can utilize these control objects to execute code through the target's browser.
Extended Description
An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers before 2.1.0 allows remote attackers to execute arbitrary code via unknown vectors, related to the INTERFACESAFE_FOR_UNTRUSTED_CALLER (aka safe for scripting) flag.
References
CVE: CVE-2016-4529
Short Name
HTTP:STC:CLSID:SCHNEIDER-HVAC
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
ActiveX AxEditGrid CVE-2016-4529 Control Electric HVAC Schneider SoMachine Unsafe
Release Date
08/26/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3377
False Positive
Unknown
CVSS Score
7.5