CVE-2024-3746
- EPSS 0.06%
- Veröffentlicht 30.04.2024 20:15:08
- Zuletzt bearbeitet 18.06.2025 17:54:52
The entire parent directory - C:\ScadaPro and its sub-directories and files are configured by default to allow user, including unprivileged users, to write or overwrite files.
- EPSS 5.99%
- Veröffentlicht 16.09.2011 17:26:14
- Zuletzt bearbeitet 11.04.2025 00:51:21
Multiple directory traversal vulnerabilities in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to read, modify, or delete arbitrary files via the (1) RF, (2) wF, (3) UF, or (4) NF command.
- EPSS 12.87%
- Veröffentlicht 16.09.2011 17:26:14
- Zuletzt bearbeitet 11.04.2025 00:51:21
service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) BF, (2) OF, or (3) EF command.
- EPSS 72.31%
- Veröffentlicht 16.09.2011 17:26:14
- Zuletzt bearbeitet 11.04.2025 00:51:21
service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary DLL functions via the XF function, possibly related to an insecure exposed method.
- EPSS 19.94%
- Veröffentlicht 16.09.2011 14:28:12
- Zuletzt bearbeitet 11.04.2025 00:51:21
Multiple stack-based buffer overflows in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long command to port 11234, as demonstrated with the ...