7-Technologies.IGSS.SCADA.System.Directory.Traversal
Description
This indicates an attack attempt on a Directory Traversal vulnerability in 7-Technologies IGSS (Interactive Graphical SCADA system).
This issue is caused by an error in IGSSdataServer.exe when handling a malformed path name. It may allow remote attackers to download or upload arbitrary files by sending a crafted client request to port 12401.
Affected Products
7-Technologies IGSS IGSSdataServer.exe <= 9.00.00.11063
Impact
Information Disclosure.
Recommended Actions
Currently we are not aware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2018-10-04 | 13.464 | Sig Added |