Security Advisory

CVE-2013-1627

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-03-11 17:00:00

Last updated 2024-09-17 03:38:48

Assigner icscert

State PUBLISHED

Description

Absolute path traversal vulnerability in NTWebServer.exe in Indusoft Studio 7.0 and earlier and Advantech Studio 7.0 and earlier allows remote attackers to read arbitrary files via a full pathname in an argument to the sub_401A90 CreateFileW function.

← Browse all CVEs View on cve.org ↗