ZDI-17-390: (0Day) Schneider Electric U.motion Builder css.inc Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose files on vulnerable installations of Schneider Electric U.motion Builder. Authentication is not required to exploit this vulnerability.

from ZDI: Published Advisories http://ift.tt/2tdy0fk
at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading

Cybersecurity researchers have uncovered a new phishing campaign that exploits social media private messages to propagate malicious payloads...