Описание
TCPUploadServer.exe in Progea Movicon 11.2 before Build 1084 does not require authentication for critical functions, which allows remote attackers to obtain sensitive information, delete files, execute arbitrary programs, or cause a denial of service (crash) via a crafted packet to TCP port 10651.
Ссылки
- Exploit
- Exploit
- PatchUS Government Resource
- PatchUS Government Resource
- Exploit
- Exploit
- PatchUS Government Resource
- PatchUS Government Resource
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:progea:movicon:11.2:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.0993
Низкий
10 Critical
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
около 3 лет назад
TCPUploadServer.exe in Progea Movicon 11.2 before Build 1084 does not require authentication for critical functions, which allows remote attackers to obtain sensitive information, delete files, execute arbitrary programs, or cause a denial of service (crash) via a crafted packet to TCP port 10651.
EPSS
Процентиль: 93%
0.0993
Низкий
10 Critical
CVSS2
Дефекты
CWE-287