![]() ![]() CVE-2015-1594 has been assigned to this vulnerability. For successful exploitation an unsuspecting user must be tricked into opening a manipulated application file. UNTRUSTED SEARCH PATH Insufficiently qualified paths could allow attackers to execute arbitrary code from files located on the local file system or connected network shares with the privileges of the user running the affected products. Siemens has produced updates for each of these products that mitigates this vulnerability. ![]() Ivan Sanchez from WiseSecurity Team has identified a search path vulnerability in the Siemens SIMATIC ProSave, SIMATIC CFC, SIMATIC STEP 7, SIMOTION Scout, and STARTER applications. OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-15-064-02 Siemens SIMATIC ProSave, SIMATIC CFC, SIMATIC STEP 7, SIMOTION Scout, and STARTER Insufficiently Qualified Paths that was published March 5, 2015, on the NCCIC/ICS‑CERT web site. SP1 Version by Siemens AG? Download the setup by pressing the green DOWNLOAD button. How to uninstall SIMATIC Prosave V10.0 incl.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |