Vulnerabilities > Ininet Solutions
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-10-25 | CVE-2015-1005 | Information Exposure vulnerability in Ininet Solutions Scada web Server IniNet embeddedWebServer (aka eWebServer) before 2.02 for Windows CE uses cleartext for password storage, which allows context-dependent attackers to obtain sensitive information via unspecified vectors. | 2.1 |
2015-10-25 | CVE-2015-1003 | Path Traversal vulnerability in Ininet Solutions Scada web Server Directory traversal vulnerability in IniNet embeddedWebServer (aka eWebServer) before 2.02 allows remote attackers to read arbitrary files via a crafted pathname. | 5.0 |
2015-10-25 | CVE-2015-1002 | Unspecified vulnerability in Ininet Solutions Scada web Server IniNet embeddedWebServer (aka eWebServer) before 2.02 mishandles URL encoding, which allows remote attackers to write to or delete files via a crafted string. | 6.4 |
2015-10-25 | CVE-2015-1001 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ininet Solutions Scada web Server Multiple stack-based buffer overflows in IniNet embeddedWebServer (aka eWebServer) before 2.02 allow remote attackers to execute arbitrary code via a long field in an HTTP request. | 10.0 |