CVE-2013-0689
 
Severity Score
10.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The TFTP server on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows remote attackers to upload files and consequently execute arbitrary code via unspecified vectors.
El servidor TFTP en el Emerson Process Management ROC800 RTU con software 3.50 y anteriores, DL8000 RTU con software 2.30 y anteriores, y ROC800L RTU con software 1.20 y anteriores permite a atacantes remotos subir archivos y por consiguiente ejecutar código arbitrario a través de vectores sin especificar.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-12-19 CVE Reserved
- 2013-10-03 CVE Published
- 2024-09-16 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (1)
URL | Tag | Source |
---|---|---|
http://ics-cert.us-cert.gov/advisories/ICSA-13-259-01 | Us Government Resource |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Enea Search vendor "Enea" | Ose Search vendor "Enea" for product "Ose" | <= 1.20 Search vendor "Enea" for product "Ose" and version " <= 1.20" | - |
Affected
| in | Emerson Search vendor "Emerson" | Roc 800l Remote Terminal Unit Search vendor "Emerson" for product "Roc 800l Remote Terminal Unit" | - | - |
Affected
|
Enea Search vendor "Enea" | Ose Search vendor "Enea" for product "Ose" | <= 3.50 Search vendor "Enea" for product "Ose" and version " <= 3.50" | - |
Affected
| in | Emerson Search vendor "Emerson" | Roc 800 Remote Terminal Unit Search vendor "Emerson" for product "Roc 800 Remote Terminal Unit" | - | - |
Affected
|
Enea Search vendor "Enea" | Ose Search vendor "Enea" for product "Ose" | <= 2.30 Search vendor "Enea" for product "Ose" and version " <= 2.30" | - |
Affected
| in | Emerson Search vendor "Emerson" | Dl 8000 Remote Terminal Unit Search vendor "Emerson" for product "Dl 8000 Remote Terminal Unit" | - | - |
Affected
|