10 matches found
EUVD-2017-16481
Malware in sbrugna...
CVE-2017-7457
XML External Entity via ".AOP" files used by Moxa MX-AOPC Server 1.5 result in remote file disclosure...
Xxe
XML External Entity via ".AOP" files used by Moxa MX-AOPC Server 1.5 result in remote file disclosure...
CVE-2017-7457
XML External Entity via ".AOP" files used by Moxa MX-AOPC Server 1.5 result in remote file disclosure...
CVE-2017-7457
XML External Entity via ".AOP" files used by Moxa MX-AOPC Server 1.5 result in remote file disclosure...
CVE-2017-7457
CVE-2017-7457 affects Moxa MX-AOPC Server 1.5 (MX-AOPC UA Server). The vulnerability is an XML External Entity (XXE) injection via ".AOP" files, leading to remote file disclosure. Root cause is improper handling of external entities in MX-AOPC Server file types. Public references in the connected...
Moxa MX AOPC-Server 1.5 - XML External Entity Injection
Credits: John Page AKA HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MOXA-MX-AOPC-SERVER-v1.5-XML-EXTERNAL-ENTITY.txt + ISR: ApparitionSec Vendor: ============ www.moxa.com Product: ======================= MX-AOPC UA SERVER - 1.5 Moxa's MX-AOPC...
Moxa MX-AOPC UA Server 1.5 XML Injection
Credits: John Page AKA HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MOXA-MX-AOPC-SERVER-v1.5-XML-EXTERNAL-ENTITY.txt + ISR: ApparitionSec Vendor: ============ www.moxa.com Product: ======================= MX-AOPC UA SERVER - 1.5 Moxa's MX-AOPC...
Moxa MX AOPC-Server v1.5 XML External Entity Exploit
Exploit for windows platform in category remote exploits + Credits: John Page AKA HYP3RLINX Vendor: ============ www.moxa.com Product: ======================= MX-AOPC UA SERVER - 1.5 Moxa's MX-AOPC UA Suite is the first OPC UA server for industrial automation supporting both push and pull...
Moxa Active OPC Server Unquoted Service Path Escalation Vulnerability
OVERVIEW Independent researcher Zhou Yu has identified an unquoted service path escalation vulnerability in Moxa’s Active OPC Server application. Moxa has produced a new version to mitigate this vulnerability. Zhou Yu has tested the new version to validate that it resolves the vulnerability...