5 matches found
GE Proficy Vulnerabilities
OVERVIEW Researchers amisto0x07 and Z0mb1E of Zero Day Initiative ZDI have identified two vulnerabilities in the General Electric GE Proficy human-machine interface/supervisory control and data acquisition HMI/SCADA - CIMPLICITY application. GE has released security advisories, GEIP13-05 and...
GE Proficy CIMPLICITY gefebt.exe Remote Code Execution
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Auxiliary::Report include Msf::Exploit::E...
GE Proficy CIMPLICITY - 'gefebt.exe' Remote Code Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'GE Proficy CIMPLICITY gefebt.exe Remote Code Execution', 'Description' = %q This module abuses the gefebt.exe component in GE Proficy...
CVE-2014-0750 GE Proficy HMI/SCADA Path Traversal
Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary code via a crafted HTTP request, aka ZDI-CAN-16...
CVE-2014-0750
GE Proficy CIMPLICITY CIMPLICITY CIMPLICITY: A path traversal vulnerability (CVE-2014-0750) in gefebt.exe within the WebView CimWebServer/Proficy CIMPLICITY components allows remote code execution via crafted HTTP requests. Affected products include Proficy HMI/SCADA - CIMPLICITY (versions up to ...