Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An ActiveX control in KeyHelp.ocx in KeyWorks KeyHelp Module (aka the HTML Help component), as used in GE Intelligent Platforms Proficy Historian 3.1, 3.5, 4.0, and 4.5; Proficy HMI/SCADA iFIX 5.0 and 5.1; Proficy Pulse 1.0; Proficy Batch Execution 5.6; SI7 I/O Driver 7.20 through 7.42; and other products, allows remote attackers to execute arbitrary commands via crafted input, related to a "command injection vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多个GE Proficy 缓冲区溢出漏洞和命令注入漏洞
Vulnerability Description
GE Proficy是一个为用户提供用于自动化控制和嵌入式领域的软硬件产品、服务以及专业技术。 多个GE Proficy产品中存在远程基于栈的缓冲区溢出漏洞和命令注入漏洞。攻击者可利用这些漏洞在使用ActiveX控件的受影响应用程序(典型的IE浏览器)上下文中执行任意shell命令和代码,攻击失败将导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A