4 matches found
GE Fanuc Real Time Information Portal 2.6 - 'writeFile()' API (Metasploit)
$Id: hookedonfanucs.rb This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require 'msf/core'...
GE Fanuc Real Time Information Portal 2.6 writeFile() API Exploit (meta)
No description provided by source. $Id: hookedonfanucs.rb This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CVE-2008-0175
GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier is affected by an unrestricted file upload vulnerability via Add WebSource, exploitable to upload arbitrary files (including ASP) to the main virtual directory. Root cause is a faulty Java RMI call that lets an authenticated attacker s...
C4 Security Advisory - GE Fanuc Proficy Information Portal 2.6 Arbitrary File Upload and Execution
Background ----------------- GE-Fanuc's Proficy Information Portal 2.6 is a web based reporting application for the SCADA environment. As such it will usually be installed in a buffer zone between the SCADA and the corporate network, which makes it a very sensitive application as it can reach bot...