Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0175

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0175
Last Modified 07 Mar 2011 10:04:04
Published 28 Jan 2008 09:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0175

Summary

Unrestricted file upload vulnerability in GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the main virtual directory.

Vulnerable Systems

Application

  • Ge Fanuc Proficy Real-time Information Portal 2.6


References

CERT-VN - VU#339345

VUPEN - ADV-2008-0307

SECTRACK - 1019274

BID - 27446

BUGTRAQ - 20080125 C4 Security Advisory - GE Fanuc Proficy Information Portal 2.6 Arbitrary File Upload and Execution

CONFIRM - http://support.gefanuc.com/support/index?page=kbchannel&id=KB12460

SECUNIA - 28678

BUGTRAQ - 20080129 Re: C4 Security Advisory - GE Fanuc Proficy Information Portal 2.6 Arbitrary File Upload and Execution

SREASON - 3591


Last Updated: 27 May 2016 10:46:42