2 matches found
The vulnerability of the executable file GTWWebMonitor.exe in the SCADA system SCADA Data Gateway allows a intruder to trigger a service failure or execute arbitrary code.
The vulnerability of the GTWWebMonitor.exe executable in the SCADA system SCADA Data Gateway is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow a malicious actor to cause service interruptions or execute arbitrary code by sending specially crafted...
Format string
On Triangle MicroWorks' SCADA Data Gateway version = v5.01.03, an unauthenticated attacker can send a specially crafted broadcast message including format string characters to the SCADA Data Gateway to perform unrestricted memory reads.An unauthenticated user can use this format string...