CoDeSys Gateway Server Multiple Remote Code Execution Vulnerabilities

CoDeSys is prone to multiple remote code-execution vulnerabilities.

An attacker can exploit these issues to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

CoDeSys 2.3.9.27 is vulnerable; other versions may also be affected.

Note: This BID was previously titled "CoDeSys Gateway Server Multiple Security Vulnerabilities", but the issue (described by CVE-2012-4705) has been moved to BID 59446 (CoDeSys Gateway Server CVE-2012-4705 Directory Traversal Vulnerability) to better document it.


 

Privacy Statement
Copyright 2010, SecurityFocus