EUVD-2011-4008

Malware in sbrugna...

Siemens Tecnomatix FactoryLink Vulnerabilities (Update A)

Overview This ICS-CERT Advisory is a follow-up to ICS-ALERT-11-080-01. An independent researcher has identified six vulnerabilities in the Siemens Tecnomatix FactoryLink supervisory control and data acquisition SCADA product. The researcher has also publicly released exploit code. The researcher...

siemens tecnomatix factorylink 8.0.1.1473 - Multiple Vulnerabilities

No description provided by source. Sources: http://aluigi.org/adv/factorylink1-adv.txt http://aluigi.org/adv/factorylink2-adv.txt http://aluigi.org/adv/factorylink3-adv.txt http://aluigi.org/adv/factorylink4-adv.txt http://aluigi.org/adv/factorylink5-adv.txt...

Siemens FactoryLink 8 CSService Logging Path Param Buffer Overflow

No description provided by source. $Id: factorylinkcsservice.rb 13019 2011-06-25 00:54:18Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

FactoryLink vrn.exe Opcode 9 Buffer Overflow

No description provided by source. $Id: factorylinkvrn09.rb 12998 2011-06-21 21:08:57Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...

SCADA Siemens FactoryLink vrn.exe Opcode 9 Buffer Overflow

A stack buffer overflow in FactoryLink 7.5, 7.5 SP2, and 8.0.1.703. An attacker may be able to execute arbitrary code...

CVE-2011-4055

Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL...

CVE-2011-4056

An unspecified ActiveX control in ActBar.ocx in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to create or overwrite arbitrary files via the save method...

Buffer overflow

Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL...

Design/Logic Flaw

An unspecified ActiveX control in ActBar.ocx in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to create or overwrite arbitrary files via the save method...

CVE-2011-4055

CVE-2011-4055 is a buffer overflow in the WebClient ActiveX control of Siemens Tecnomatix FactoryLink affecting v6.6.1 (6.6 SP1), v7.5.217 (7.5 SP2), and v8.0.2.54. An attacker could trigger arbitrary code execution by supplying a long string in a parameter for the location URL, remotely exploita...

CVE-2011-4056

The connected documents provide concrete details: CVE-2011-4056 affects Siemens Tecnomatix FactoryLink through the ActBar.ocx ActiveX control. Versions affected include 6.6.1 (6.6 SP1), 7.5.217 (7.5 SP2), and 8.0.2.54. The vulnerability allows remote attackers to create or overwrite arbitrary fil...

CVE-2011-4056

An unspecified ActiveX control in ActBar.ocx in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to create or overwrite arbitrary files via the save method...

CVE-2011-4055

Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL...

Siemens FactoryLink Multiple ActiveX Vulnerabilities

Overview ICS-CERT originally released Advisory ICSA-11-343-01P on the US-CERT secure portal on December 09, 2011. This web page release was delayed to allow users time to download and install the update. Researcher Kuang-Chun Hung of Taiwan’s Information and Communication Security Technology Cent...

Siemens Tecnomatix FactoryLink SCADA VRN Server Arbitrary File Download

An arbitrary file download vulnerability has been reported in Siemens Tecnomatix FactoryLink SCADA VRN Server. The vulnerability is due to a boundary error in the application's VRN Server, which occurs while handling incoming message requests. A remote attacker could trigger this vulnerability by...

Siemens Tecnomatix FactoryLink SCADA VRN Server Multiple Buffer Overflows

Multiple buffer overflow vulnerabilities have been reported in Siemens Tecnomatix FactoryLink VRN Server SCADA system. The vulnerabilities are due to a boundary error in the application's VRN Server, which occurs while handling incoming message requests. A remote attacker could leverage these...

Siemens Tecnomatix FactoryLink SCADA Multiple Services Denial Of Service

Multiple Denial of Service DoS vulnerabilities have been reported in Siemens' Tecnomatix FactoryLink SCADA system. The vulnerabilities are due to insufficient verification of messages' data by the Siemens Tecnomatix FactoryLink's services, while handling messages sent to the server. Remote...

Siemens FactoryLink 8 CSService Logging Path Param Buffer Overflow

This module exploits a vulnerability found on Siemens FactoryLink 8. The vulnerability occurs when CSService.exe processes a CSMSGListFilesREQ message, the user-supplied path first gets converted to ANSI format CodePage 0, and then gets handled by a logging routine where proper bounds checking is...

Siemens FactoryLink 8 CSService Logging Buffer Overflow

$Id: factorylinkcsservice.rb 13019 2011-06-25 00:54:18Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...