Vulnerability Details CVE-2012-0232
Directory traversal vulnerability in rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6, 3.0, 3.0 SP1, and 3.5 allows remote attackers to modify the configuration via crafted strings.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.4%
CVSS Severity
CVSS v2 Score 6.4
References
- http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB14768
- http://www.securityfocus.com/bid/52439
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-032-03.pdf
- http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB14768
- http://www.securityfocus.com/bid/52439
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-032-03.pdf
Products affected by CVE-2012-0232
-
cpe:2.3:a:ge:intelligent_platforms_proficy_real-time_information_portal:2.6
-
cpe:2.3:a:ge:intelligent_platforms_proficy_real-time_information_portal:3.0
-
cpe:2.3:a:ge:intelligent_platforms_proficy_real-time_information_portal:3.5