CVE-2012-6069 Information

Feb 14, 2021 cve

Description

Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read overwrite or create arbitrary files via a .. (dot dot) in a request to the TCP listener service.

Reference

http://ics-cert.us-cert.gov/advisories/ICSA-14-084-01 http://www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html http://www.digitalbond.com/tools/basecamp/3s-codesys/ http://www.securityfocus.com/bid/56300 http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-01.pdf

Share on: