Schneider Electric InduSoft Web Studio before 8.0 allows remote attackers to execute arbitrary code or cause a denial of service (unhandled runtime exception and application crash) via a crafted Indusoft Project file.
References
Link | Resource |
---|---|
http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-251-01 | Vendor Advisory |
Configurations
Information
Published : 2015-09-25 07:59
Updated : 2015-09-28 18:06
NVD link : CVE-2015-7375
Mitre link : CVE-2015-7375
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
indusoft
- web_studio