EUVD-2016-5517

Malware in sbrugna...

CVE-2016-4530

OSIsoft PI SQL Data Access Server aka OLE DB 2016 1.5 allows remote authenticated users to cause a denial of service service outage and data loss via a message...

CVE-2016-4530

OSIsoft PI SQL Data Access Server aka OLE DB 2016 1.5 allows remote authenticated users to cause a denial of service service outage and data loss via a message...

OSIsoft PI SQL Data Access Server Input Validation Vulnerability

OVERVIEW OSIsoft has identified an input validation vulnerability in its own PI SQL Data Access Server. OSIsoft has produced a new version of PI SQL Data Access Server OLE DB 2016 1.5 to address this issue. This vulnerability could be exploited remotely. AFFECTED PRODUCTS Affected versions of PI...

Command injection

OSIsoft PI AF 2.6 and 2.7 and PI SQL for AF 2.1.2.19 do not ensure that the PI SQL AF Trusted Users group lacks the Everyone account, which allows remote authenticated users to bypass intended command restrictions via SQL statements...

CVE-2015-1013

CVE-2015-1013 affects OSIsoft PI AF 2.6/2.7 and PI SQL for AF 2.1.2.19. The root cause is an incorrect default permission where the PI SQL (AF) Trusted Users group may include the Everyone account, enabling remote authenticated users to bypass command restrictions by issuing SQL statements. Impac...

CVE-2015-1013

OSIsoft PI AF 2.6 and 2.7 and PI SQL for AF 2.1.2.19 do not ensure that the PI SQL AF Trusted Users group lacks the Everyone account, which allows remote authenticated users to bypass intended command restrictions via SQL statements...