Release DateJan 11, 2012 |
Severitycritical |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems |
DescriptionThis indicates an attack attempt to exploit a Remote Code Execution vulnerability in InduSoft Web Studio.The vulnerability is due to insufficient sanitizing of user supplied inputs in the application when handling incoming requests. As a result, a remote attacker may be able to execute arbitrary code within the context of the application. |
Affected ProductsInduSoft Web Studio prior to 7.0 + SP1 + P1 |
Recommended ActionsApply patch available from the website.http://www.indusoft.com/hotfixes/hotfixes.php |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-4051 |
