Cross-Site Scripting Vulnerability in Control Microsystems ClearSCADA
CVE-2011-3144

Currently unrated

Key Information:

Vendor

Aveva

Status
Clearscada
Vendor
CVE Published:
16 August 2011

What is CVE-2011-3144?

A cross-site scripting (XSS) vulnerability exists in Control Microsystems' ClearSCADA versions 2005, 2007, and 2009 prior to R2.3, as well as in SCX versions prior to 67 R4.5 and 68 R3.9. This enables remote attackers to inject arbitrary web scripts or HTML into affected systems through unspecified vectors, thus posing serious security risks to users by allowing the execution of malicious scripts.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/44955
third-party-advisoryx_refsource_SECUNIA
http://www.us-cert.gov/control_systems/pdf/ICSA-10-314-01...
x_refsource_MISC
http://www.osvdb.org/72987
vdb-entryx_refsource_OSVDB

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.