88 matches found
EUVD-2014-8349
Malware in sbrugna...
EUVD-2014-8348
Malware in sbrugna...
EUVD-2019-16379
Malware in sbrugna...
EUVD-2014-8350
Malware in sbrugna...
EUVD-2015-8440
Malware in sbrugna...
EUVD-2014-8351
Malware in sbrugna...
EUVD-2014-9013
Malware in sbrugna...
Schneider Electric ProClima ICSA-19-295-01 Multiple Remote Code Execution Vulnerabilities
Description Schneider Electric ProClima is prone to multiple remote code-execution vulnerabilities. Attackers can exploit these issues to execute arbitrary code on the system. Schneider Electric ProClima versions prior to 8.0.0 are vulnerable. Technologies Affected Schneider-Electric Proclima 6.0...
ICSA-19-295-01_Schneider Electric ProClima
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Schneider Electric Equipment: Proclima Vulnerabilities: Code Injection, Improper Restriction of Operations within the Bounds of a Memory Buffer, Uncontrolled Search Path Element 2. RISK EVALUATION...
ProClima Code Injection Vulnerability
Schneider Electric ProClima is a heat calculation software package from Schneider Electric, France. The software provides thermal management capabilities for environmental and electrical/electronic equipment installed in control panels by analyzing specified thermal data. A code injection...
ProClima Buffer Overflow Vulnerability
Schneider Electric ProClima is a heat calculation software package from Schneider Electric, France. The software provides thermal management capabilities for environmental and electrical/electronic equipment installed in control panels by analyzing specified thermal data. A buffer overflow...
ProClima Uncontrolled Search Path Element Vulnerability
ProClima is a thermal calculation software from Schneider Electric that can be used to determine the best thermal solution for a control panel. An uncontrolled search path element vulnerability exists in versions prior to ProClima 8.0.0. An attacker could exploit this vulnerability to execute...
CVE-2019-6825
A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProClima all versions prior to version 8.0.0 which could allow a malicious DLL file, with the same name of any resident DLLs inside the software installation, to execute arbitrary code in all versions of ProClima prior to version...
CVE-2019-6824
A CWE-119: Buffer Errors vulnerability exists in ProClima all versions prior to version 8.0.0 which allows an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0...
CVE-2019-6824
A CWE-119: Buffer Errors vulnerability exists in ProClima all versions prior to version 8.0.0 which allows an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0...
CVE-2019-6823
A CWE-94: Code Injection vulnerability exists in ProClima all versions prior to version 8.0.0 which could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0...
CVE-2019-6823
A CWE-94: Code Injection vulnerability exists in ProClima all versions prior to version 8.0.0 which could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0...
CVE-2019-6825
A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProClima all versions prior to version 8.0.0 which could allow a malicious DLL file, with the same name of any resident DLLs inside the software installation, to execute arbitrary code in all versions of ProClima prior to version...
Buffer overflow
A CWE-119: Buffer Errors vulnerability exists in ProClima all versions prior to version 8.0.0 which allows an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0...
Code injection
A CWE-94: Code Injection vulnerability exists in ProClima all versions prior to version 8.0.0 which could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0...