7-Technologies.IGSS.SCADA.System.Directory.Traversal

description-logoDescription

This indicates an attack attempt on a Directory Traversal vulnerability in 7-Technologies IGSS (Interactive Graphical SCADA system).
This issue is caused by an error in IGSSdataServer.exe when handling a malformed path name. It may allow remote attackers to download or upload arbitrary files by sending a crafted client request to port 12401.

affected-products-logoAffected Products

7-Technologies IGSS IGSSdataServer.exe <= 9.00.00.11063

Impact logoImpact

Information Disclosure.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2018-10-04 13.464 Sig Added