11 matches found
EUVD-2020-28134
Malware in sbrugna...
Hirschmann Automation and Control HiOS and HiSecOS Products Buffer Copy Without Checking Size of Input (CVE-2020-6994)
A buffer overflow vulnerability was found in some devices of Hirschmann Automation and Control HiOS and HiSecOS. The vulnerability is due to improper parsing of URL arguments. An attacker could exploit this vulnerability by specially crafting HTTP requests to overflow an internal buffer. The...
CVE-2020-6994
A buffer overflow vulnerability was found in some devices of Hirschmann Automation and Control HiOS and HiSecOS. The vulnerability is due to improper parsing of URL arguments. An attacker could exploit this vulnerability by specially crafting HTTP requests to overflow an internal buffer. The...
Buffer overflow
A buffer overflow vulnerability was found in some devices of Hirschmann Automation and Control HiOS and HiSecOS. The vulnerability is due to improper parsing of URL arguments. An attacker could exploit this vulnerability by specially crafting HTTP requests to overflow an internal buffer. The...
CVE-2020-6994
CVE-2020-6994 is a buffer/overflow vulnerability in Hirschmann HiOS and HiSecOS caused by improper parsing of URL arguments. A remote attacker could craft HTTP requests to overflow an internal buffer, potentially fully compromising affected devices. Affected products include HiOS 07.0.02 and olde...
Hirschmann Automation and Control HiOS and HiSecOS Products
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Hirschmann Automation and Control GmbH, a division of Belden Inc. Equipment: HiOS, HiSecOS Vulnerability: Classic Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability...
Hirschmann Automation and Control GmbH Classic Platform Switches
CVSS v3 7.5 ATTENTION: Exploitable remotely/high skill level is needed to exploit. Vendor: Hirschmann Automation and Control GmbH, a division of Belden Inc. Equipment: Classic Platform Switches Vulnerabilities: Session Fixation, Information Exposure Through Query Strings in GET Request, Cleartext...
PT-2017-07: Session Fixation in Hirschmann Automation and Control GmbH Classic Platform Switches
The specialists of the Positive Research center have detected a Session Fixation vulnerability in Hirschmann Automation and Control GmbH Classic Platform Switches. A session fixation vulnerability in the web interface of Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS...
PT-2017-10: Information Disclosure in Hirschmann Automation and Control GmbH Classic Platform Switches
The specialists of the Positive Research center have detected an Information Disclosure vulnerability in Hirschmann Automation and Control GmbH Classic Platform Switches. Vulnerability in the web interface of Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic...
PT-2018-06: Authentication Bypass in Hirschmann Automation and Control GmbH Classic Platform Switches
The specialists of the Positive Research center have detected an Authentication Bypass vulnerability in Hirschmann Automation and Control GmbH Classic Platform Switches. Vulnerability in the web interface of Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic...
Hirschmann Automation and Control Embedded SCADA server detection
Binary data 8020.prm...