RSS   Vulnerabilities for
'Proficy real-time information portal'
   RSS

2008-01-28
 
CVE-2008-0175

CWE-Other
 

 
Unrestricted file upload vulnerability in GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the main virtual directory.

 
 
CVE-2008-0174

CWE-310
 

 
GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier uses HTTP Basic Authentication, which transmits usernames and passwords in base64-encoded cleartext and allows remote attackers to steal the passwords and gain privileges.

 

 >>> Vendor: Ge fanuc 3 Products
Proficy real-time information portal
Cimplicity
IFIX


Copyright 2024, cxsecurity.com

 

Back to Top