CVE-2010-2772

creationtimestamp| type| source ---|---|--- 2023-05-05 17:24:10+00:00| seen| https://t.me/jokerplstaeen/16429 2024-02-13 19:17:18+00:00| seen| https://t.me/ctinow/184058 2025-02-06 02:42:29+00:00| seen| Telegram/dhIHklMvD33Tew2u1WOFp8u5gkviinTl7Ybo1wjtK65G60 2025-06-23 06:51:37+00:00| seen|...

Siemens Simatic SCADA WINCC SQL Insecure Default Credentials Security Bypass (CVE-2010-2772)

A security bypass vulnerability has been reported in Siemens SIMATIC WinCC server. A remote attacker can exploit this issue by using the default hard-coded password to bypass certain security restrictions and gain access to the application's database...

CVE-2010-2772

CVE-2010-2772 affects Siemens SIMATIC WinCC and SIMATIC PCS 7: a security bypass via default hard-coded SQL credentials allows remote attackers to access the backend database with administrative-like access. The vulnerability is tied to use of default credentials in the WinCC SQL server, permitti...

CVE-2010-2568

Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 SP2 and R2, and Windows 7 allows local users or remote attackers to execute arbitrary code via a crafted 1 .LNK or 2 .PIF shortcut file, which is not properly handled during icon display in Windows Explorer...

Code injection

Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 SP2 and R2, and Windows 7 allows local users or remote attackers to execute arbitrary code via a crafted 1 .LNK or 2 .PIF shortcut file, which is not properly handled during icon display in Windows Explorer...

CVE-2010-2772

Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows local users to access a back-end database and gain privileges, as demonstrated in the wild in July 2010 by the Stuxnet worm, a different vulnerability than CVE-2010-2568. Recent assessments: Assessed Attacker...