GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY CimWebServer.exe目录遍历漏洞

CVECAN ID: CVE-2014-0751 GE Proficy CIMPLICITY是客户端/服务器业务可视化和控制解决方案。 GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 8.2 SIM 24之前版本中，CimWebServer.exe（即组件WebView）及Proficy Process Systems在实现上存在目录遍历漏洞，远程攻击者通过向TCP端口10212发送特制的消息，利用此漏洞可执行任意代码。 0 ge-ip Proficy CIMPLICITY 8.2 SIM 24 厂商补丁： ge-ip...

Directory traversal

Directory traversal vulnerability in CimWebServer.exe aka the WebView component in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary code via a crafted message to TCP port 10212, aka...

CVE-2014-0751

CVE-2014-0751 affects GE Proficy HMI/SCADA CIMPLICITY CimWebServer (CimWebServer) where the CimWebServer does not validate the location of shell files, enabling remote attackers to load shell code and, per disclosures, potentially execute arbitrary code. Public analyses describe path traversal vu...

CVE-2013-2785

Multiple buffer overflows in CimWebServer.exe in the WebView component in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.0 SIM 27, 8.1 before SIM 25, and 8.2 before SIM 19, and Proficy Process Systems with CIMPLICITY, allow remote attackers to execute arbitrary code via crafted...

Buffer overflow

Multiple buffer overflows in CimWebServer.exe in the WebView component in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.0 SIM 27, 8.1 before SIM 25, and 8.2 before SIM 19, and Proficy Process Systems with CIMPLICITY, allow remote attackers to execute arbitrary code via crafted...

CVE-2013-2785

CVE-2013-2785 affects GE Intelligent Platforms Proficy HMI/SCADA CIMPLICITY (WebView/CimWebServer). The vulnerability stems from improper input handling in CimWebServer’s WebView, allowing a remote attacker to execute arbitrary code by sending crafted data to TCP port 10212. Affected installation...

CVE-2012-4689

Integer overflow in CimWebServer.exe in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to cause a denial of service daemon crash via a malformed HTTP request...

Integer overflow

Integer overflow in CimWebServer.exe in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to cause a denial of service daemon crash via a malformed HTTP request...