Immunity, Inc.
Name wp_measuresoft_scadapro_xf
CVE CVE-2011-3490
Exploit Pack White_Phosphorus
DescriptionMeasuresoft ScadaPro Remote Code Execution
NotesReferences: http://aluigi.altervista.org/adv/scadapro_1-adv.txt
CVE Name: CVE-2011-3490
VENDOR: Measuresoft
Notes:
All payloads are served over SMB via wp_smbserver_backdoor except 'Execute Command'. Windows based CANVAS users must first disable the native Windows SMB server before running the module. On Windows 7 this is done by disabling the 'Server' and 'TCP/IP NetBIOS Helper' services and rebooting the system.

Instructions:
1. Disable native SMB server and reboot
2. Run wp_measuresoft_scadapro_xf

Repeatability: One Shot
Date public: 2011-09-13
CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2011-3490
CVSS: 10.0

Learn more about the CANVAS Exploit Pack here: White_Phosphorus