1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Aveva Indusoft Web Studio Remote Command Execution Exploit

Attack: Aveva Indusoft Web Studio Remote Command Execution Exploit

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the attempt to exploit vulnerability in AVEVA InduSoft Web Studio.

Additional Information

The vulnerability stems from an empty password in the configuration file. An unauthorized attacker could exploit this vulnerability to remotely execute code with the same privilege as that of the affected software.

Affected

  • InduSoft Web Studio versions less than or eqaul to 1 SP2

Response


  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube