Vulnerabilities > 7T
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-02-22 | CVE-2012-0223 | Unspecified vulnerability in 7T Termis 2.0/2.10 Untrusted search path vulnerability in 7-Technologies (7T) TERMIS 2.10 and earlier allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2012-0224. | 9.3 |
| 2012-02-21 | CVE-2012-0224 | Unspecified vulnerability in 7T Aquis 1.5 Untrusted search path vulnerability in 7-Technologies (7T) AQUIS 1.5 and earlier allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2012-0223. | 9.3 |
| 2012-01-19 | CVE-2011-4053 | Unspecified vulnerability in 7T Igss Untrusted search path vulnerability in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) before 9.0.0.11291 allows local users to gain privileges via a Trojan horse DLL in the current working directory. | 9.3 |
| 2011-12-27 | CVE-2011-4537 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in 7T Igss Multiple buffer overflows in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) 9.0.0.11355 and earlier allow remote attackers to execute arbitrary code or cause a denial of service via a crafted packet to TCP port (1) 12397 or (2) 12399. | 7.5 |
| 2011-12-27 | CVE-2011-4050 | Buffer Errors vulnerability in 7T Igss 9.0.0.11200 Buffer overflow in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) 9.0.0.11200 allows remote attackers to cause a denial of service via a crafted packet to TCP port 12401. | 5.0 |
| 2011-12-17 | CVE-2011-3339 | Cross-Site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP (formerly Aladdin HASP SRM) run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies (7T) IGSS 7 and other products, when Firefox 2.0 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors that trigger write access to a configuration file. | 4.3 |
| 2011-07-29 | CVE-2011-2959 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in 7T Igss Stack-based buffer overflow in the Open Database Connectivity (ODBC) service (Odbcixv9se.exe) in 7-Technologies Interactive Graphical SCADA System (IGSS) 9 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet to TCP port 22202. | 10.0 |
| 2011-05-31 | CVE-2011-2214 | Remote Memory Corruption vulnerability in 7T Interactive Graphical SCADA System Malformed ODBC Packet Unspecified vulnerability in the Open Database Connectivity (ODBC) component in 7T Interactive Graphical SCADA System (IGSS) before 9.0.0.11143 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 20222, which triggers memory corruption related to an "invalid structure being used." | 10.0 |
| 2011-04-05 | CVE-2011-1568 | USE of Externally-Controlled Format String vulnerability in 7T Igss Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00.00.11074, and 9.00.00.11063 and earlier, in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated using the RMS Reports Delete command, related to the logging of messages to GSST.LOG. | 10.0 |
| 2011-04-05 | CVE-2011-1567 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in 7T Igss Multiple stack-based buffer overflows in IGSSdataServer.exe 9.00.00.11063 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted (1) ListAll, (2) Write File, (3) ReadFile, (4) Delete, (5) RenameFile, and (6) FileInfo commands in an 0xd opcode; (7) the Add, (8) ReadFile, (9) Write File, (10) Rename, (11) Delete, and (12) Add commands in an RMS report templates (0x7) opcode; and (13) 0x4 command in an STDREP request (0x8) opcode to TCP port 12401. | 10.0 |