Lucene search

[email protected]CVE-2008-0175

HistoryJan 29, 2008 - 2:00 a.m.

CVE-2008-0175

2008-01-2902:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2008-0175

unrestricted file upload

ge fanuc proficy

remote code execution

nvd

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.431 Medium

EPSS

Percentile

97.3%

JSON

Unrestricted file upload vulnerability in GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the main virtual directory.

CPENameOperatorVersion
ge_fanuc:proficy_real-time_information_portalge fanuc proficy real-time information portalle2.6

CPE	Name	Operator	Version
ge_fanuc:proficy_real-time_information_portal	ge fanuc proficy real-time information portal	le	2.6

References

secunia.com/advisories/28678

securityreason.com/securityalert/3591

support.gefanuc.com/support/index?page=kbchannel&id=KB12460

www.kb.cert.org/vuls/id/339345

www.securityfocus.com/archive/1/487079/100/0/threaded

www.securityfocus.com/archive/1/487242/100/0/threaded

www.securityfocus.com/bid/27446

www.securitytracker.com/id?1019274

www.vupen.com/english/advisories/2008/0307/references

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.431 Medium

EPSS

Percentile

97.3%

JSON

Related for CVE-2008-0175

seebug1 prion1 securityvulns2 cert1 ics1