High severity8.8NVD Advisory· Published Nov 20, 2007· Updated Apr 23, 2026

CVE-2007-6033

Description

Invensys Wonderware InTouch 8.0 creates a NetDDE share with insecure permissions (Everyone/Full Control), which allows remote authenticated attackers, and possibly anonymous users, to execute arbitrary programs.

Affected products

Wonderware/Intouch
cpe:2.3:a:wonderware:intouch:8.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/27751nvdBroken LinkVendor Advisory
www.kb.cert.org/vuls/id/138633nvdThird Party AdvisoryUS Government Resource
www.securityfocus.com/bid/26496nvdBroken LinkThird Party AdvisoryVDB Entry
osvdb.org/42398nvdBroken Link
pacwest.wonderware.com/web/News/NewsDetails.aspxnvdBroken Link
www.digitalbond.com/index.php/2007/11/19/wonderware-intouch-80-netdde-vulnerability-s4-preview/nvdNot Applicable

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000