4 matches found
CVE-2013-0687
The installer routine in Schneider Electric MiCOM S1 Studio uses world-writable permissions for executable files, which allows local users to modify the service or the configuration files, and consequently gain privileges or trigger incorrect protective-relay operation, via a Trojan horse...
Schneider (CVE-2013-0687) (deprecated)
Plugin deprecated because micoms1studio is not detectable in this way This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2023/03/10. Deprecated because...
CVE-2013-0687
The issue CVE-2013-0687 affects Schneider Electric MiCOM S1 Studio Software. The root cause is world-writable permissions set on executable files within the MiCOM S1 Studio installation, enabling a local attacker with access to replace executables in the program files directory. Consequences incl...
Schneider Electric MiCOM S1 Studio Improper Authorization Vulnerability
Overview This advisory provides mitigation details for a vulnerability affecting the Schneider Electric MiCOM S1 Studio Software. Independent researcher Michael Toecker of Digital Bond has identified an improper authorization vulnerability in the MiCOM S1 Studio Software using the Microsoft Attac...