14 matches found
EUVD-2007-5765
Malware in sbrugna...
EUVD-2000-0099
Malware in sbrugna...
EUVD-2004-1115
Malware in sbrugna...
EUVD-2022-24503
Malicious code in bioql PyPI...
Rockwell Automation Micrologix Improper Access Control (CVE-2017-14462)
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Improper access control
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
Improper access control
An exploitable access control vulnerability exists in the data, program, and function file permissions functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a read or write operation resulting in disclosure of sensitive information,...
CVE-2017-14467
CVE-2017-14467 affects Allen-Bradley MicroLogix 1400 Series B FRN 21.2 and earlier. The vulnerability is an improper access control that allows an unauthenticated remote attacker to perform live rung edits and potentially modify ladder logic, settings, or trigger faults and CPU state changes via ...
PT-2018-5662 · Rockwell Automation · Allen Bradley Micrologix 1400 Series B
Name of the Vulnerable Software and Affected Versions: Allen Bradley Micrologix 1400 Series B versions 21.2 and before Description: The issue allows for unauthorized access and modification of sensitive information due to improper access control in the data, program, and function file permissions...
CRITICAL CODESYS VULNERABILITIES IN WAGO PFC 200 SERIES
VENDOR DESCRIPTION “The WAGO-I/O-SYSTEM is a flexible fieldbus-independent solution for decentralized automation tasks. With the relay, function and interface modules, as well as overvoltage protection, WAGO provides a suitable interface for any application.” Source:...
Atheme Program Modification Vulnerability
Atheme is a portable, secure, open source and modular set of IRC services. A program modification vulnerability exists in Atheme. A remote attacker could exploit the vulnerability by registering or terminating a specific account or username to change program operations...
CVE-2014-9141
The installer in Thomson Reuters Fixed Assets CS 13.1.4 and earlier uses weak permissions for connectbgdl.exe, which allows local users to execute arbitrary code by modifying this program...
ProFTPD 1.2 pre6 snprintf Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/650/info Lack of user input validation in ProFTPD can lead to a remote root vulnerability. On systems that support it ProFTPD will attempt to modify the name of the program being executed argv0 to display the command bein...
session spoofing and password theft probe-vulnerability warning-the black bar safety net
session spoofing article first briefly about the General asp system of the authentication principle. In General, the backend administrator login page enter the account password, the program will take him to submit a user name and password to the database administrator table to find if there is th...