8 matches found
EUVD-2019-8053
Malware in sbrugna...
GE Digital HMI/SCADA iFIX
1. EXECUTIVE SUMMARY CVSS v3 6.1 ATTENTION: Low skill level to exploit Vendor: GE Digital Equipment: HMI/SCADA iFIX Vulnerabilities: Incorrect Permission Assignment for Critical Resource 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to escalate their...
The vulnerability of the GE Proficy HMI/SCADA iFIX monitoring tool for technological operations, the client-server application for data processing and control of technological operations (Proficy HMI/SCADA CIMPLICITY), and the Proficy Historian repository lies in the insufficient security of account protection, allowing attackers to obtain user passwords.
The vulnerability of the GE Proficy HMI/SCADA iFIX control system, the client-server application for data processing and control operations, as well as the Proficy HMI/SCADA CIMPLICITY control system and the Proficy Historian repository, is related to insufficiently secure account protection...
CVE-2012-2515
Multiple stack-based buffer overflows in the KeyHelp.KeyCtrl.1 ActiveX control in KeyHelp.ocx 1.2.312 in KeyWorks KeyHelp Module aka the HTML Help component, as used in EMC Documentum ApplicationXtender Desktop 5.4; EMC Captiva Quickscan Pro 4.6 SP1; GE Intelligent Platforms Proficy Historian 3.1...
CVE-2012-2515
CVE-2012-2515 describes multiple stack-based buffer overflows in the KeyHelp.KeyCtrl.1 ActiveX control (KeyHelp.ocx 1.2.312) in the KeyWorks KeyHelp Module (HTML Help component). The flaws allow remote code execution via a long string passed to the (1) JumpMappedID or (2) JumpURL methods, affecti...
CVE-2012-2515
Multiple stack-based buffer overflows in the KeyHelp.KeyCtrl.1 ActiveX control in KeyHelp.ocx 1.2.312 in KeyWorks KeyHelp Module aka the HTML Help component, as used in EMC Documentum ApplicationXtender Desktop 5.4; EMC Captiva Quickscan Pro 4.6 SP1; GE Intelligent Platforms Proficy Historian 3.1...
CVE-2012-2516
The CVE-2012-2516 issue is an ActiveX-based command-injection vulnerability in KeyHelp.ocx of GE Intelligent Platforms’ KeyWorks KeyHelp module, affecting Proficy Historian (3.1, 3.5, 4.0, 4.5), Proficy HMI/SCADA – iFIX (5.0, 5.1), Proficy Pulse 1.0, Proficy Batch Execution 5.6, and SI7 I/O Drive...
KLA10300 ACE vulnerability in GE IP products
A buffer overflow was found in GE IP products. By exploiting this vulnerability malicious users can execute arbitrary code and commands. This vulnerability can be exploited remotely via a specially designed input. Original advisories GE IP bulletin Exploitation Malware exists for this...