Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.14 views

Mitsubishi (CVE-2013-2817) (deprecated)

Plugin deprecated because mc-worx is not detectable in this way This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2023/03/10. Deprecated because mc-wo...

0.1AI score0.0593EPSS
Exploits0References3
OSV
OSV
added 2021/06/25 7:15 p.m.4 views

CVE-2021-33542

Phoenix Contact Classic Automation Worx Software Suite in Version 1.87 and below is affected by a remote code execution vulnerability. Manipulated PC Worx or Config+ projects could lead to a remote code execution when unallocated memory is freed because of incompletely initialized data. The...

7CVSS7.5AI score0.01756EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/06/25 12:0 a.m.7 views

Phoenix Contact Classic Automation Worx Software Suite 缓冲区错误漏洞

Phoenix Contact Classic Automation is a division of Phoenix Contac Phoenix Contact, a German company that provides surplus parts and Phoenix Contact repair services. A security vulnerability exists in Software Suite 1.87 and prior versions, which stems from a vulnerability that can be exploited b...

7.8CVSS6.5AI score0.01756EPSS
Exploits0References3
CNVD
CNVD
added 2019/06/21 12:0 a.m.2 views

Phoenix Contact Automation Worx Software Suite Out-of-Bounds Read Vulnerability

Automation Worx Software Suite is an automation software package from Phoenix Contact. An out-of-bounds read vulnerability exists in the PC Worx, PC Worx Express, and Config+ components in Phoenix Contact Automation Worx Software Suite versions 1.86 and earlier. An attacker could exploit this...

8.8CVSS8AI score0.0377EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/21 12:0 a.m.3 views

Phoenix Contact Automation Worx Software Suite Uninitialized Pointer Access Vulnerability

Automation Worx Software Suite is an automation software package from Phoenix Contact. An uninitialized pointer access vulnerability exists in the PC Worx, PC Worx Express, and Config+ components in Phoenix Contact Automation Worx Software Suite versions 1.86 and earlier. An attacker could exploi...

8.8CVSS8AI score0.03707EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/21 12:0 a.m.2 views

Phoenix Contact Automation Worx Software Suite Memory Misreference Vulnerability

Automation Worx Software Suite is an automation software package from Phoenix Contact. A memory misreference vulnerability exists in the PC Worx, PC Worx Express, and Config+ components in Phoenix Contact Automation Worx Software Suite versions 1.86 and earlier. An attacker could exploit this...

8.8CVSS8AI score0.03707EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2014/12/28 12:0 a.m.15 views

Mitsubishi MCWorkX ActiveX Control File Execution Command Execution - Ver2 (CVE-2013-2817)

A command execution vulnerability has been reported in Mitsubishielectric Mc-worx Suite. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

9.3CVSS5.4AI score0.0593EPSS
Exploits0
ICS
ICS
added 2014/11/23 7:0 a.m.42 views

Mitsubishi Electric Automation MC-WorX Suite Unsecure ActiveX Control

OVERVIEW This advisory is a follow-up to the original alert, titled ICS-ALERT-13-259-01 Mitsubishi MC-WorX Suite Unsecure ActiveX Control,ICS-ALERT-13-259-01 Mitsubishi MC-WorkX Suite Insecure ActiveX Control, http://ics-cert.us-cert.gov/alerts/ICS-ALERT-13-259-01, web site last accessed February...

9.3CVSS6.6AI score0.0593EPSS
Exploits0References10
NVD
NVD
added 2014/02/24 4:48 a.m.17 views

CVE-2013-2817

An ActiveX control in IcoLaunch.dll in Mitsubishi Electric Automation MC-WorX Suite 8.02 allows user-assisted remote attackers to execute arbitrary programs via a crafted HTML document in conjunction with a Login Client button click...

9.3CVSS7AI score0.0593EPSS
Exploits0References2
Prion
Prion
added 2014/02/24 4:48 a.m.11 views

Hardcoded credentials

An ActiveX control in IcoLaunch.dll in Mitsubishi Electric Automation MC-WorX Suite 8.02 allows user-assisted remote attackers to execute arbitrary programs via a crafted HTML document in conjunction with a Login Client button click...

9.3CVSS7.5AI score0.0593EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2014/02/24 2:0 a.m.48 views

CVE-2013-2817

The vulnerability CVE-2013-2817 affects Mitsubishi Electric Automation MC-WorX Suite 8.02 via the IcoLaunch.dll ActiveX control. The insecure control (Exposed Dangerous Method or Function CWE-749) can be used to execute arbitrary code when a user visits a crafted HTML document and clicks the Logi...

9.3CVSS7.2AI score0.0593EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/02/24 2:0 a.m.18 views

CVE-2013-2817

An ActiveX control in IcoLaunch.dll in Mitsubishi Electric Automation MC-WorX Suite 8.02 allows user-assisted remote attackers to execute arbitrary programs via a crafted HTML document in conjunction with a Login Client button click...

7AI score0.0593EPSS
Exploits0References2
Rows per page
Query Builder