Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown
CVE-2024-10313
Disclosure Date: October 24, 2024 (last updated October 25, 2024)
iniNet Solutions SpiderControl SCADA PC HMI Editor has a path traversal
vulnerability. When the software loads a malicious ‘ems' project
template file constructed by an attacker, it can write files to
arbitrary directories. This can lead to overwriting system files,
causing system paralysis, or writing to startup items, resulting in
remote control.
0
Attacker Value
Unknown
CVE-2024-8232
Disclosure Date: September 10, 2024 (last updated September 11, 2024)
SpiderControl SCADA Web Server has a vulnerability that could allow an
attacker to upload specially crafted malicious files without
authentication.
0
Attacker Value
Unknown
CVE-2015-1003
Disclosure Date: October 25, 2015 (last updated October 05, 2023)
Directory traversal vulnerability in IniNet embeddedWebServer (aka eWebServer) before 2.02 allows remote attackers to read arbitrary files via a crafted pathname.
0
Attacker Value
Unknown
CVE-2015-1001
Disclosure Date: October 25, 2015 (last updated October 05, 2023)
Multiple stack-based buffer overflows in IniNet embeddedWebServer (aka eWebServer) before 2.02 allow remote attackers to execute arbitrary code via a long field in an HTTP request.
0
Attacker Value
Unknown
CVE-2015-1002
Disclosure Date: October 25, 2015 (last updated October 05, 2023)
IniNet embeddedWebServer (aka eWebServer) before 2.02 mishandles URL encoding, which allows remote attackers to write to or delete files via a crafted string.
0
Attacker Value
Unknown
CVE-2015-1005
Disclosure Date: October 25, 2015 (last updated October 05, 2023)
IniNet embeddedWebServer (aka eWebServer) before 2.02 for Windows CE uses cleartext for password storage, which allows context-dependent attackers to obtain sensitive information via unspecified vectors.
0
