11 matches found
EUVD-2015-7810
Malware in sbrugna...
CVE-2015-7913
agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows local users to execute arbitrary Java code with SYSTEM privileges by using the Apache Axis AdminService deployment method to publish a class...
CVE-2015-7912
The Ice Faces servlet in agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document...
CVE-2015-7913
agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows local users to execute arbitrary Java code with SYSTEM privileges by using the Apache Axis AdminService deployment method to publish a class...
CVE-2015-7912
The Ice Faces servlet in agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document...
Design/Logic Flaw
agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows local users to execute arbitrary Java code with SYSTEM privileges by using the Apache Axis AdminService deployment method to publish a class...
Code injection
The Ice Faces servlet in agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document...
CVE-2015-7912
The CVE-2015-7912 entry describes a remote code execution vulnerability in Tibbo AggreGate Platform prior to version 5.30.06. The issue resides in the Ice Faces servlet within ag_server_service.exe of the AggreGate Server Service, allowing an unauthenticated remote attacker to upload and execute ...
CVE-2015-7913
CVE-2015-7913 affects Tibbo AggreGate Platform (ag_server_service.exe) prior to version 5.30.06. A local attacker can publish arbitrary Java classes via the Apache Axis AdminService deployment method, enabling code execution with SYSTEM privileges. Mitigation: update to AggreGate Platform 5.30.06...
CVE-2015-7912
The Ice Faces servlet in agserverservice.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document...
Tibbo AggreGate SCADA/HMI Server Service uploadDirectory Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tibbo AggreGate SCADA/HMI. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Windows service "AggreGate Server Service" agserverservice.exe. Through...