Vulnerabilities > 7T

DATE CVE VULNERABILITY TITLE RISK
2012-02-22 CVE-2012-0223 Unspecified vulnerability in 7T Termis 2.0/2.10
Untrusted search path vulnerability in 7-Technologies (7T) TERMIS 2.10 and earlier allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2012-0224.
network
7t
critical
9.3
2012-02-21 CVE-2012-0224 Unspecified vulnerability in 7T Aquis 1.5
Untrusted search path vulnerability in 7-Technologies (7T) AQUIS 1.5 and earlier allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2012-0223.
network
7t
critical
9.3
2012-01-19 CVE-2011-4053 Unspecified vulnerability in 7T Igss
Untrusted search path vulnerability in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) before 9.0.0.11291 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
network
7t
critical
9.3
2011-12-27 CVE-2011-4537 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in 7T Igss
Multiple buffer overflows in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) 9.0.0.11355 and earlier allow remote attackers to execute arbitrary code or cause a denial of service via a crafted packet to TCP port (1) 12397 or (2) 12399.
network
low complexity
7t CWE-119
7.5
2011-12-27 CVE-2011-4050 Buffer Errors vulnerability in 7T Igss 9.0.0.11200
Buffer overflow in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) 9.0.0.11200 allows remote attackers to cause a denial of service via a crafted packet to TCP port 12401.
network
low complexity
7t CWE-119
5.0
2011-12-17 CVE-2011-3339 Cross-Site Scripting vulnerability in multiple products
Cross-site scripting (XSS) vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP (formerly Aladdin HASP SRM) run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies (7T) IGSS 7 and other products, when Firefox 2.0 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors that trigger write access to a configuration file.
4.3
2011-07-29 CVE-2011-2959 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in 7T Igss
Stack-based buffer overflow in the Open Database Connectivity (ODBC) service (Odbcixv9se.exe) in 7-Technologies Interactive Graphical SCADA System (IGSS) 9 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet to TCP port 22202.
network
low complexity
7t CWE-119
critical
10.0
2011-05-31 CVE-2011-2214 Remote Memory Corruption vulnerability in 7T Interactive Graphical SCADA System Malformed ODBC Packet
Unspecified vulnerability in the Open Database Connectivity (ODBC) component in 7T Interactive Graphical SCADA System (IGSS) before 9.0.0.11143 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 20222, which triggers memory corruption related to an "invalid structure being used."
network
low complexity
7t
critical
10.0
2011-04-05 CVE-2011-1568 USE of Externally-Controlled Format String vulnerability in 7T Igss
Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00.00.11074, and 9.00.00.11063 and earlier, in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated using the RMS Reports Delete command, related to the logging of messages to GSST.LOG.
network
low complexity
7t CWE-134
critical
10.0
2011-04-05 CVE-2011-1567 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in 7T Igss
Multiple stack-based buffer overflows in IGSSdataServer.exe 9.00.00.11063 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted (1) ListAll, (2) Write File, (3) ReadFile, (4) Delete, (5) RenameFile, and (6) FileInfo commands in an 0xd opcode; (7) the Add, (8) ReadFile, (9) Write File, (10) Rename, (11) Delete, and (12) Add commands in an RMS report templates (0x7) opcode; and (13) 0x4 command in an STDREP request (0x8) opcode to TCP port 12401.
network
low complexity
7t CWE-119
critical
10.0