CVE-2014-0780

Description

Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 7.1 before SP2 Patch 4 allows remote attackers to read administrative passwords in APP files, and consequently execute arbitrary code, via unspecified web requests.

References

https://blog.checkpoint.com/security/march-2024s-most-wanted-malware-hackers-discover-new-infection-chain-method-to-deliver-remcos/

http://ics-cert.us-cert.gov/advisories/ICSA-14-107-02

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3