QwikSec

Security Database

CVE

CWE

Training

CVE-2011-1565

Published: Apr 5, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

Directory traversal vulnerability in IGSSdataServer.exe 9.00.00.11063 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to (1) read (opcode 0x3) or (2) create or write (opcode 0x2) arbitrary files via ..\ (dot dot backslash) sequences to TCP port 12401.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_BID

http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-080-03.pdf

x_refsource_MISC

third-party-advisory

x_refsource_SREASON

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

exploit

x_refsource_EXPLOIT-DB

http://aluigi.org/adv/igss_1-adv.txt

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.