7 matches found
EUVD-2012-3971
Malware in sbrugna...
CVE-2012-4027
Directory traversal vulnerability in Tridium Niagara AX Framework allows remote attackers to read files outside of the intended images, nav, and px folders by leveraging incorrect permissions, as demonstrated by reading the config.bog file...
Tridium Niagara AX Improper Authentication (CVE-2012-3024)
Tridium Niagara AX Framework through 3.6 uses predictable values for 1 session IDs and 2 keys, which might allow remote attackers to bypass authentication via a brute-force attack. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...
CVE-2012-3025
The default configuration of Tridium Niagara AX Framework through 3.6 uses a cleartext base64 format for transmission of credentials in cookies, which allows remote attackers to obtain sensitive information by sniffing the network...
CVE-2012-3025
The vulnerability CVE-2012-3025 affects Tridium Niagara AX Framework (versions prior to 3.7). The root cause is a default configuration that transmits credentials in cookies using cleartext base64, enabling remote attackers to capture sensitive information by sniffing network traffic. Impact is c...
CVE-2012-3024
Tridium Niagara AX Framework through 3.6 uses predictable values for 1 session IDs and 2 keys, which might allow remote attackers to bypass authentication via a brute-force attack...
CVE-2012-4027
CVE-2012-4027 concerns a directory traversal in the Tridium Niagara AX Framework . The vulnerability allows remote attackers to read files outside the intended images, nav, and px folders by exploiting incorrect permissions, with examples showing access to a file like config.bog . The connected s...