[Forgot Password]
Login  Register Subscribe

23631

 
 

115083

 
 

97147

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2010-4731

Date: (C)2011-02-14   (M)2015-12-16
 
CVSS Score: 6.8Access Vector: NETWORK
Exploitability Subscore: 8.0Access Complexity: LOW
Impact Subscore: 6.9Authentication: SINGLE_INSTANCE
 Confidentiality: COMPLETE
 Integrity: NONE
 Availability: NONE











Absolute path traversal vulnerability in cgi-bin/read.cgi in WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms allows remote authenticated administrators to read arbitrary files via a full pathname in the file parameter, a different vulnerability than CVE-2009-4463.

Reference:
20101001
http://archives.neohapsis.com/archives/bugtraq/2010-10/0002.html
VU#114560
http://www.us-cert.gov/control_systems/pdf/ICSA-10-316-01A.pdf

CWE    1
CWE-22

© 2013 SecPod Technologies