14 matches found
EUVD-2011-4008
Malware in sbrugna...
CVE-2011-4055
Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL...
CVE-2011-4056
An unspecified ActiveX control in ActBar.ocx in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to create or overwrite arbitrary files via the save method...
Design/Logic Flaw
An unspecified ActiveX control in ActBar.ocx in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to create or overwrite arbitrary files via the save method...
Buffer overflow
Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL...
CVE-2011-4056
An unspecified ActiveX control in ActBar.ocx in Siemens Tecnomatix FactoryLink 6.6.1 aka 6.6 SP1, 7.5.217 aka 7.5 SP2, and 8.0.2.54 allows remote attackers to create or overwrite arbitrary files via the save method...
CVE-2011-4055
CVE-2011-4055 is a buffer overflow in the WebClient ActiveX control of Siemens Tecnomatix FactoryLink affecting v6.6.1 (6.6 SP1), v7.5.217 (7.5 SP2), and v8.0.2.54. An attacker could trigger arbitrary code execution by supplying a long string in a parameter for the location URL, remotely exploita...
CVE-2011-4056
The connected documents provide concrete details: CVE-2011-4056 affects Siemens Tecnomatix FactoryLink through the ActBar.ocx ActiveX control. Versions affected include 6.6.1 (6.6 SP1), 7.5.217 (7.5 SP2), and 8.0.2.54. The vulnerability allows remote attackers to create or overwrite arbitrary fil...
Siemens Tecnomatix FactoryLink SCADA VRN Server Multiple Buffer Overflows
Multiple buffer overflow vulnerabilities have been reported in Siemens Tecnomatix FactoryLink VRN Server SCADA system. The vulnerabilities are due to a boundary error in the application's VRN Server, which occurs while handling incoming message requests. A remote attacker could leverage these...
Siemens Tecnomatix FactoryLink SCADA Multiple Services Denial Of Service
Multiple Denial of Service DoS vulnerabilities have been reported in Siemens' Tecnomatix FactoryLink SCADA system. The vulnerabilities are due to insufficient verification of messages' data by the Siemens Tecnomatix FactoryLink's services, while handling messages sent to the server. Remote...
Siemens Tecnomatix FactoryLink SCADA CSService Multiple MSGs File Download
Siemens Tecnomatix FactoryLink is a Supervisory Control and Data Acquisition SCADA system used for monitoring and controlling industrial processes. A possible file downloading vulnerability have been reported in Siemens Tecnomatix FactoryLink SCADA system. The vulnerability is due to a boundary...
Vulnerabilities in some SCADA server softwares
The following are almost all the vulnerabilities I found for a quick experiment some months ago in certain well known server-side SCADA softwares still vulnerable in this moment. In case someone doesn't know SCADA like me before the tests: it's just one or more softwares usually a core, a graphic...
siemens tecnomatix factorylink 8.0.1.1473 - Multiple Vulnerabilities
Sources: http://aluigi.org/adv/factorylink1-adv.txt http://aluigi.org/adv/factorylink2-adv.txt http://aluigi.org/adv/factorylink3-adv.txt http://aluigi.org/adv/factorylink4-adv.txt http://aluigi.org/adv/factorylink5-adv.txt http://aluigi.org/adv/factorylink6-adv.txt Advisory Archive:...
siemens tecnomatix factorylink 8.0.1.1473 - Multiple Vulnerabilities
siemens tecnomatix factorylink 8.0.1.1473 - Multiple Vulnerabilities Sources: http://aluigi.org/adv/factorylink1-adv.txt http://aluigi.org/adv/factorylink2-adv.txt http://aluigi.org/adv/factorylink3-adv.txt http://aluigi.org/adv/factorylink4-adv.txt http://aluigi.org/adv/factorylink5-adv.txt...