Tag: Information Disclosure

security advisory

[ICS] Trihedral VTScada Multiple Vulnerabilities

ICS-CERT published an advisory on one of my reports this week –
https://ics-cert.us-cert.gov/advisories/ICSA-17-164-01

Vendor: Trihedral
Equipment: VTScada
Vulnerability: Resource Consumption, Cross-Site Scripting, Information Exposure

AFFECTED PRODUCTS

The following versions of VTScada, an HMI SCADA software, are affected:
VTScada Versions prior to 11.2.26

Read on for details.

security advisory

PIXORD Vehicle 3G Wi-Fi Router 3GR-431P – Multiple Vulnerabilities

New exploit / advisory posted on Exploit-db & Packetstorm:

https://www.exploit-db.com/exploits/38370/
https://packetstormsecurity.com/files/133834/PIXORD-Vehicle-3G-Wi-Fi-Router-Command-Injection-Information-Disclosure.html

Read on.

security advisory

Netgear Voice Gateway 2.3.0.23_2.3.23 – Multiple Vulnerabilities

New advisory / exploit posted on Exploit-db & Packetstorm:

https://www.exploit-db.com/exploits/38449/
https://packetstormsecurity.com/files/133941/Netgear-Voice-Gateway-2.3.0.23_2.3.23-XSS-Code-Execution.html

Read on.