SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  ABB Test Signal Viewer Arbitrary File Overwrite

Category: SCADA-ATTACKS      

Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allows remote attackers to create and execute arbitrary files via a full pathname in an argument to the ExportStyle method, in conjunction with file content in the (1) Caption or (2) FormatString property value.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5022


Relevant Information