Lucene search
MitreCVE-2011-2963HistoryJul 29, 2011 - 7:55 p.m.
CVE-2011-2963
2011-07-2919:55:04
CWE-287
mitre
web.nvd.nist.gov
25
cve-2011-2963
progea movicon 11.2
tcpuploadserver.exe
authentication bypass
remote attack
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
Low
EPSS
0.1
Percentile
95.0%
TCPUploadServer.exe in Progea Movicon 11.2 before Build 1084 does not require authentication for critical functions, which allows remote attackers to obtain sensitive information, delete files, execute arbitrary programs, or cause a denial of service (crash) via a crafted packet to TCP port 10651.
Affected configurations
Node
progeamoviconMatch11.2
Related
nvd
nvd
CVE-2011-2963
2011-07-29 19:55:04
openvas
openvas
Progea Movicon 'TCPUploadServer.exe' Multiple Vulnerabilities
2011-08-18 00:00:00
prion
prion
Authentication flaw
2011-07-29 19:55:00
exploitdb
exploitdb
Progea Movicon 11 - 'TCPUploadServer' Remote File System
2011-03-23 00:00:00
cvelist
cvelist
CVE-2011-2963
2011-07-29 19:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
Low
EPSS
0.1
Percentile
95.0%
Related for CVE-2011-2963