7T Interactive Graphical SCADA System (IGSS) Directory Traversal (CVE-2011-1565)
| Check Point Reference: | CPAI-2011-398 | |
| Date Published: | ||
| Severity: | ||
| Source: | ||
| Industry Reference(s): | CVE-2011-1565 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? 7T Interactive Graphical SCADA System V9 | ||
| Vulnerability Description A directory traversal vulnerability has been reported in 7T Interactive Graphical SCADA System (IGSS). 7-Technologies' IGSS is a Supervisory Control and Data Acquisition (SCADA) system used for monitoring and controlling industrial processes. A remote attacker may exploit this vulnerability to read and overwrite arbitrary files on an affected system. Successful exploitation may result in code injection and execution in the security context of the affected server process. |
||
|
Update/Patch Available Apply patches from the vendor's website |
|
|
Vulnerability Details This is a directory traversal vulnerability. The vulnerability is due to lack of input sanitation by the application, while handling specially crafted requests. A remote attacker could trigger this flaw by sending malicious requests to an affected server. |
Protection Overview
This protection will detect and block attempts to exploit this vulnerability.
In order for the protection to be activated, update your product to the latest update. For information on how to update , go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.