CVE-2012-0232
GE Proficy Real-Time Information Portal Remote Interface Service Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Directory traversal vulnerability in rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6, 3.0, 3.0 SP1, and 3.5 allows remote attackers to modify the configuration via crafted strings.
Vulnerabilidad de salto de directorio en rifsrvd.exe en Remote Interface Service en GE Intelligent Platforms Proficy Real-Time Information Portal v2.6, v3.0, v3.0 SP1, y v3.5, permite a atacantes remotos modificar la configuracíón a través de de cadenas manipuladas.
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE Proficy Real-Time Information Portal. Authentication is not required to exploit this vulnerability.
This specific flaw exists within the Remote Interface Service (rifsrvd.exe). The Remote Interface Service listens on TCP port 5159 by default. The process does not sufficiently validate two input strings that are used to create a configuration file on the server. Remote, unauthenticated attackers can exploit this vulnerability by sending malformed ID_SAVE_SRVC_CFG message packets to the target, which could ultimately lead to remote code execution under the context of the SYSTEM user.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2011-12-21 CVE Reserved
- 2012-03-15 CVE Published
- 2024-02-09 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (3)
URL | Tag | Source |
---|---|---|
http://www.securityfocus.com/bid/52439 | Vdb Entry | |
http://www.us-cert.gov/control_systems/pdf/ICSA-12-032-03.pdf | Us Government Resource |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB14768 | 2012-11-01 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Ge Search vendor "Ge" | Intelligent Platforms Proficy Real-time Information Portal Search vendor "Ge" for product "Intelligent Platforms Proficy Real-time Information Portal" | 2.6 Search vendor "Ge" for product "Intelligent Platforms Proficy Real-time Information Portal" and version "2.6" | - |
Affected
| ||||||
Ge Search vendor "Ge" | Intelligent Platforms Proficy Real-time Information Portal Search vendor "Ge" for product "Intelligent Platforms Proficy Real-time Information Portal" | 3.0 Search vendor "Ge" for product "Intelligent Platforms Proficy Real-time Information Portal" and version "3.0" | - |
Affected
| ||||||
Ge Search vendor "Ge" | Intelligent Platforms Proficy Real-time Information Portal Search vendor "Ge" for product "Intelligent Platforms Proficy Real-time Information Portal" | 3.0 Search vendor "Ge" for product "Intelligent Platforms Proficy Real-time Information Portal" and version "3.0" | sp1 |
Affected
| ||||||
Ge Search vendor "Ge" | Intelligent Platforms Proficy Real-time Information Portal Search vendor "Ge" for product "Intelligent Platforms Proficy Real-time Information Portal" | 3.5 Search vendor "Ge" for product "Intelligent Platforms Proficy Real-time Information Portal" and version "3.5" | - |
Affected
|