Back to search
CVE-2011-2963
Published: Jul 29, 2011
Modified: Sep 16, 2024
PUBLISHED
Description
TCPUploadServer.exe in Progea Movicon 11.2 before Build 1084 does not require authentication for critical functions, which allows remote attackers to obtain sensitive information, delete files, execute arbitrary programs, or cause a denial of service (crash) via a crafted packet to TCP port 10651.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
46907
vdb-entry
x_refsource_BID
http://www.us-cert.gov/control_systems/pdf/ICSA-11-056-01A.pdf
x_refsource_MISC
http://www.us-cert.gov/control_systems/pdf/ICSA-11-056-01.pdf
x_refsource_MISC
72888
vdb-entry
x_refsource_OSVDB
17034
exploit
x_refsource_EXPLOIT-DB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now