Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1566

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-1566
Last Modified 11 May 2012 11:37:38
Published 05 Apr 2011 11:19:36
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1566

Summary

Directory traversal vulnerability in dc.exe 9.00.00.11059 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to execute arbitrary programs via ..\ (dot dot backslash) sequences in opcodes (1) 0xa and (2) 0x17 to TCP port 12397.

Vulnerable Systems

Application

  • 7t Igss


References

MISC - http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-080-03.pdf

VUPEN - ADV-2011-0741

BID - 46936

EXPLOIT-DB - 17024

SECUNIA - 43849

MISC - http://aluigi.org/adv/igss_9-adv.txt

MISC - http://aluigi.org/adv/igss_8-adv.txt


Last Updated: 27 May 2016 10:57:17