Security Advisory

CVE-2012-4356

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-19 20:00:00

Last updated 2024-09-16 18:19:09

Assigner mitre

State PUBLISHED

Description

Multiple directory traversal vulnerabilities in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 allow remote attackers to read arbitrary files via port-46824 TCP packets specifying a file-open operation with opcode 0x78 and a .. (dot dot) in a pathname, followed by a file-read operation with opcode (1) 0x96, (2) 0x97, or (3) 0x98.

← Browse all CVEs View on cve.org ↗