Lucene search
K

268 matches found

ICS
ICS
added 2015/09/19 6:0 a.m.51 views

Motorola MOSCAD SCADA IP Gateway Vulnerabilities

OVERVIEW Independent researcher Aditya K. Sood has identified Remote File Inclusion RFI and Cross-Site Request Forgery CSRF vulnerabilities in Motorola Solutions’ MOSCAD IP Gateway. Motorola Solutions has confirmed this product was cancelled at the end of 2012 and no longer offer software updates...

7.5CVSS8.5AI score0.01505EPSS
Exploits0References10
ThreatPost
ThreatPost
added 2015/01/21 10:17 a.m.14 views

Hard-Coded FTP Credentials Found in Schneider Electric SCADA Gateway

The parade of easily exploitable, critical vulnerabilities in ICS software shows no signs of ending anytime soon, with the latest entrant being two flaws in Schneider Electric’s ETG3000 FactoryCast HMI Gateway that allow unauthenticated remote access to the device’s FTP server and configuration...

2.9AI score
Exploits0References1
ICS
ICS
added 2015/01/10 7:0 a.m.70 views

Siemens SIMATIC HMI Devices Vulnerabilities (Update E)

OVERVIEW This updated advisory is a follow-up to the updated advisory titled ICSA-15-099-01D Siemens SIMATIC HMI Devices Vulnerabilities that was published September 10, 2015, on the NCCIC/ICS‑CERT web site. Siemens has identified three vulnerabilities in its SIMATIC HMI devices. These...

6.8CVSS6.5AI score0.0215EPSS
Exploits0References10
ICS
ICS
added 2014/10/19 6:0 a.m.40 views

Ecava IntegraXor Buffer Overflow Vulnerability

OVERVIEW This advisory is a follow-up to the alert titled ICS-ALERT-14-015-01 Ecava IntegraXor Buffer Overflow Vulnerability that was published January 15, 2014, on the NCCIC/ICS-CERT Web site. Independent researcher Luigi Auriemma identified a buffer overflow vulnerability in the Ecava IntegraXo...

7.8CVSS7.1AI score0.02518EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2014/09/25 12:0 a.m.26 views

7T Interactive Graphical SCADA System 'dc.exe' Command Injection Vulnerability

7T Interactive Graphical SCADA System is prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS6.7AI score0.66982EPSS
Exploits10References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.43 views

CoDeSys SCADA 2.3 - Remote Exploit

No description provided by source. / See Also: http://aluigi.altervista.org/adv/codesys1-adv.txt CoDeSys v2.3 Industrial Control System Development Software Remote Buffer Overflow Exploit for CoDeSys Scada webserver Author : Celil UNUVER, SignalSEC Labs www.signalsec.com Tested on WinXP SP1 EN TH...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Interactive Graphical SCADA System Remote Command Injection

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::Tcp def initializeinfo =...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

DATAC RealWin SCADA 1.06 - Buffer Overflow Exploit

No description provided by source. Exploit Title: RealWin SCADA System SEH Overwrite Date: 10-27-10 Author: Blake Software Link: http://www.realflex.com/products/realwin/realwin.php Version: 1.06 Tested on: Windows XP SP3 running in VMware Workstation rfx import socket, sys if lensys.argv!= 3:...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/10/22 12:0 a.m.32 views

Interactive Graphical SCADA System - Remote Command Injection (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Interactive Graphical SCADA System Remote Command Injection', 'Description' = %q This module abuses a directory traversal flaw in...

10CVSS7.4AI score0.66982EPSS
Exploits10
Metasploit
Metasploit
added 2013/10/17 7:7 p.m.64 views

Interactive Graphical SCADA System Remote Command Injection

This module abuses a directory traversal flaw in Interactive Graphical SCADA System v9.00. In conjunction with the traversal flaw, if opcode 0x17 is sent to the dc.exe process, an attacker may be able to execute arbitrary system commands. This module requires Metasploit:...

10CVSS1.3AI score0.66982EPSS
Exploits10
ThreatPost
ThreatPost
added 2013/07/16 2:21 p.m.20 views

Bug Bounty to Reward Researchers with Redeemable Points

IntegraXor, a manufacturer of supervisory control and data acquisition SCADA equipment, announced last week that it would implement a bug bounty program offering points redeemable for company services to researchers that disclose security vulnerabilities in their IGX SCADA system. In most bug...

7.5AI score
Exploits0References6
ThreatPost
ThreatPost
added 2012/12/11 2:28 p.m.46 views

Kelihos Update Includes New TLD and USB Infection Capabilities

There’s a little Michael Myers in the Kelihos botnet; maim it, kill it and it keeps on coming back to wreak more havoc. The 2011 takedown of the Kelihos botnet was one of Microsoft’s high-profile success stories against spambots and the like, yet Kelihos was back for more at the start of 2012 usi...

9.3CVSS7.6AI score0.91324EPSS
Exploits15References6
Check Point Advisories
Check Point Advisories
added 2012/03/26 12:0 a.m.0 views

Siemens SIMATIC WinCC Flexible SCADA Runtime Stack Buffer Overflow

A stack buffer overflow vulnerability has been reported in Siemens SIMATIC WinCC Flexible...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/02/17 12:0 a.m.27 views

7T-IGSS Server Login Attempt Detected (SCADA)

Binary data 6323.prm...

7.3AI score
Exploits0References2
OpenVAS
OpenVAS
added 2012/01/23 12:0 a.m.18 views

Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability

This host is installed with Interactive Graphical SCADA System and is prone to code execution vulnerability. OpenVAS Vulnerability Test $Id: gbigssdllcodeexecutionvuln.nasl 5940 2017-04-12 09:02:05Z teissa $ Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability...

9.3CVSS1.4AI score0.01787EPSS
Exploits0References2
NVD
NVD
added 2012/01/19 3:55 p.m.17 views

CVE-2011-4053

Untrusted search path vulnerability in 7-Technologies 7T Interactive Graphical SCADA System IGSS before 9.0.0.11291 allows local users to gain privileges via a Trojan horse DLL in the current working directory...

9.3CVSS6.4AI score0.01787EPSS
Exploits0References1
Prion
Prion
added 2011/12/27 4:1 a.m.27 views

Buffer overflow

Buffer overflow in 7-Technologies 7T Interactive Graphical SCADA System IGSS 9.0.0.11200 allows remote attackers to cause a denial of service via a crafted packet to TCP port 12401...

5CVSS7.3AI score0.21149EPSS
Exploits2References3Affected Software1
Prion
Prion
added 2011/12/27 4:1 a.m.27 views

Buffer overflow

Multiple buffer overflows in 7-Technologies 7T Interactive Graphical SCADA System IGSS 9.0.0.11355 and earlier allow remote attackers to execute arbitrary code or cause a denial of service via a crafted packet to TCP port 1 12397 or 2 12399...

7.5CVSS8.4AI score0.0469EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2011/12/27 2:0 a.m.147 views

CVE-2011-4050

The CVE-2011-4050 issue affects 7-Technologies IGSS Data Server (IGSSdataServer.exe) in IGSS 9.x. A buffer overflow in the server, caused by handling of file/packet data, can be triggered remotely by sending a crafted TCP packet to port 12401, leading to a remote denial of service. Public referen...

5CVSS6.9AI score0.21149EPSS
Exploits2References3Affected Software1
Check Point Advisories
Check Point Advisories
added 2011/08/23 12:0 a.m.5 views

7T Interactive Graphical SCADA System (IGSS) Directory Traversal (CVE-2011-1565)

A directory traversal vulnerability has been reported in 7T Interactive Graphical SCADA System IGSS. 7-Technologies' IGSS is a Supervisory Control and Data Acquisition SCADA system used for monitoring and controlling industrial processes. A remote attacker may exploit this vulnerability to read a...

10CVSS7AI score0.64063EPSS
Exploits6
Rows per page
Query Builder