LAquis SCADA Software CVE-2017-6020 Directory Traversal Vulnerability

LAquis SCADA Software is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input.

Remote attackers may use a specially crafted request with directory-traversal sequences ('../') to retrieve sensitive information and modify arbitrary files. This may aid in further attacks.

Versions prior to LAquis SCADA Software 4.1.0.3237 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus