Web Studio@7.0 Security Vulnerabilities and Issues — Web Studio@7.0 CVE List

Lucene search

IndusoftWeb Studio7.0

5 matches found

CVE•added 2011/12/05 11:55 a.m.•123 views

CVE-2011-4051

CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 does not require authentication, which allows remote attackers to execute arbitrary code via vectors related to creation of a file, loading a DLL, and process control.

10CVSS7.5AI score0.7479EPSS

CVE•added 2011/01/18 6:3 p.m.•54 views

CVE-2011-0488

Stack-based buffer overflow in NTWebServer.exe in the test web service in InduSoft NTWebServer, as distributed in Advantech Studio 6.1 and InduSoft Web Studio 7.0, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long request to TCP port 8...

10CVSS8.7AI score0.18242EPSS

CVE•added 2013/03/11 5:55 p.m.•53 views

CVE-2013-1627

Absolute path traversal vulnerability in NTWebServer.exe in Indusoft Studio 7.0 and earlier and Advantech Studio 7.0 and earlier allows remote attackers to read arbitrary files via a full pathname in an argument to the sub_401A90 CreateFileW function.

7.8CVSS6.9AI score0.08978EPSS

CVE•added 2011/12/05 11:55 a.m.•51 views

CVE-2011-4052

Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote attackers to execute arbitrary code via a crafted 0x15 (aka Remove File) operation for a file with a long name.

9.3CVSS8.1AI score0.08065EPSS

CVE•added 2011/05/04 10:55 p.m.•49 views

CVE-2011-1900

Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 6.1 and 7.x before 7.0+Patch 1 allows remote attackers to execute arbitrary code via an invalid request.

10CVSS7.9AI score0.49258EPSS