← Voltar para CVEs

CVE-2017-6033

N/A

Descricao

A DLL Hijacking issue was discovered in Schneider Electric Interactive Graphical SCADA System (IGSS) Software, Version 12 and previous versions. The software will execute a malicious file if it is named the same as a legitimate file and placed in a location that is earlier in the search path.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado4/7/2017

Ultima modificacao4/20/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

schneider-electric:interactive_graphical_scada_system

Fraquezas (CWE)

CWE-427CWE-427

Referencias

http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2017-090-01(ics-cert@hq.dhs.gov)

http://www.securityfocus.com/bid/97389(ics-cert@hq.dhs.gov)

https://ics-cert.us-cert.gov/advisories/ICSA-17-094-01(ics-cert@hq.dhs.gov)

http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2017-090-01(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/97389(af854a3a-2127-422b-91ae-364da2661108)

https://ics-cert.us-cert.gov/advisories/ICSA-17-094-01(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.