CVE-2011-3497

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/scada/scadaprocmdexe.rb 2025-02-06 03:13:40+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:57+00:00| seen|...

Measuresoft ScadaPro Multiple Command Directory Traversal Code Execution (CVE-2011-3497)

A command execution vulnerability has been reported in Measuresoft ScadaPro...

CVE-2011-3497

service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary DLL functions via the XF function, possibly related to an insecure exposed method...

CVE-2011-3497

Measuresoft ScadaPro 4.0.0 and earlier is affected by CVE-2011-3497 where remote attackers can trigger command execution by abusing the XF function in service.exe (insecure exposed method / directory traversal). The issue, tied to a broader set of vulnerabilities (stack overflow, insecure method ...

Measuresoft ScadaPro Remote Command Execution

This module allows remote attackers to execute arbitrary commands on the affected system by abusing via Directory Traversal attack when using the 'xf' command execute function. An attacker can execute system from msvcrt.dll to upload a backdoor and gain remote code execution. This vulnerability...