147 matches found
AzeoTech DAQFactory 信息泄露漏洞
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A plaintext transfer vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability stems from cookie information bein...
AzeoTech DAQFactory 输入验证错误漏洞
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A security vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability can be exploited by an attacker via a...
AzeoTech DAQFactory 输入验证错误漏洞
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A man-in-the-middle attack vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability can be exploited by an...
DAQFactory Deserialization Vulnerability
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A deserialization vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. An attacker can exploit this vulnerability to corrupt...
AzeoTech DAQFactory
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: AzeoTech Equipment: DAQFactory Vulnerabilities: Use of Inherently Dangerous Function, Deserialization of Untrusted Data, Cleartext Transmission of Sensitive Information, Modification of Assumed-Immutable Data MAID 2. RISK...
CVE-2017-12699
An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones...
CVE-2017-5147
An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...
CVE-2017-5147
An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...
CVE-2017-12699
An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones...
Default configuration
An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones...
Path traversal
An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...
CVE-2017-5147
CVE-2017-5147 describes an uncontrolled search path element vulnerability in AzeoTech DAQFactory before version 17.1. The issue allows a local attacker to have the program load a malicious DLL placed in the search path, potentially affecting integrity/availability. ICS-CERT/vulnerability details ...
CVE-2017-5147
An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...
CVE-2017-12699
CVE-2017-12699 affects AzeoTech DAQFactory prior to 17.1. Two vulnerabilities are described: (1) Incorrect Default Permissions (CWE-276) allowing local, non-administrative users to replace or modify application files with malicious ones; (2) Uncontrolled Search Path Element (CWE-427) that could e...
CVE-2017-12699
An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones...
AzeoTech DAQFactory Unauthorized Modification Vulnerability
AzeoTech DAQFactory is an HMI/SCADA software. An unauthorized modification vulnerability exists in AzeoTech DAQFactory, which can be exploited by a local, unmanaged user to maliciously replace or modify the original application files...
AzeoTech DAQFactory Uncontrolled Search Path Element Vulnerability
AzeoTech DAQFactory is an HMI/SCADA software. AzeoTech DAQFactory suffers from an uncontrolled search path element vulnerability that can be exploited by an attacker to execute a malicious DLL file that has been placed in the search path...
AzeoTech DAQFactory
CVSS v3 7.1 ATTENTION: Local access and user-level privileges are required to exploit these vulnerabilities Vendor: AzeoTech Equipment: DAQFactory Vulnerabilities: Incorrect Default Permissions, Uncontrolled Search Path Element AFFECTED PRODUCTS AzeoTech reports that the vulnerabilities affect th...
DAQFactory <= 5.85 build 1853 Stack Overflow
No description provided by source. Luigi Auriemma Application: DAQFactory http://www.azeotech.com/daqfactory.php Versions: = 5.85 build 1853 Platforms: Windows Bug: stack overflow Exploitation: remote Date: 13 Sep 2011 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1...
DaqFactory HMI NETB Request Overflow
No description provided by source. $Id: daqfactorybof.rb 13750 2011-09-18 02:45:55Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...