Computer Security
[EN] securityvulns.ru no-pyccku


Softing FG-100 security vulnerabilities
Published:10.11.2014
Source:
SecurityVulns ID:14083
Type:remote
Threat Level:
5/10
Description:Backdoor accounts, crossite scripting.
Affected:SOFTING : Softing FG-100
CVE:CVE-2014-6617
 CVE-2014-6616 (Cross-site scripting (XSS) vulnerability in Softing FG-100 PROFIBUS Single Channel (FG-100-PB) with firmware FG-x00-PB_V2.02.0.00 allows remote attackers to inject arbitrary web script or HTML via the DEVICE_NAME parameter to cgi-bin/CFGhttp/.)
Original documentdocumentIngmar Rosenhagen, CVE-2014-6617 Softing FG-100 Backdoor Account (10.11.2014)
 documentIngmar Rosenhagen, CVE-2014-6616 Softing FG-100 Webui XSS (10.11.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod