RSS   Podatności dla 'Intouch'   RSS

2015-07-31
 
CVE-2015-1009

 

 
Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and Wonderware InTouch Machine Edition through 7.1 SP3 Patch 4 use cleartext for project-window password storage, which allows local users to obtain sensitive information by reading a file.

 
2008-05-06
 
CVE-2008-2005

CWE-399
 

 
The SuiteLink Service (aka slssvc.exe) in WonderWare SuiteLink before 2.0 Patch 01, as used in WonderWare InTouch 8.0, allows remote attackers to cause a denial of service (NULL pointer dereference and service shutdown) and possibly execute arbitrary code via a large length value in a Registration packet to TCP port 5413, which causes a memory allocation failure.

 
2007-11-19
 
CVE-2007-6033

CWE-264
 

 
Invensys Wonderware InTouch 8.0 creates a NetDDE share with insecure permissions (Everyone/Full Control), which allows remote authenticated attackers, and possibly anonymous users, to execute arbitrary programs.

 

 >>> Vendor: Wonderware 2 Produkty
Intouch
Suitelink


Copyright 2024, cxsecurity.com

 

Back to Top