Vulnerability Description
Directory traversal vulnerability in rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6, 3.0, 3.0 SP1, and 3.5 allows remote attackers to modify the configuration via crafted strings.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ge | Intelligent Platforms Proficy Real-Time Information Portal | 2.6 |
Related Weaknesses (CWE)
References
- http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB14768Vendor Advisory
- http://www.securityfocus.com/bid/52439
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-032-03.pdfUS Government Resource
- http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB14768Vendor Advisory
- http://www.securityfocus.com/bid/52439
- http://www.us-cert.gov/control_systems/pdf/ICSA-12-032-03.pdfUS Government Resource
FAQ
What is CVE-2012-0232?
CVE-2012-0232 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Directory traversal vulnerability in rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6, 3.0, 3.0 SP1, and 3.5 allows remote attackers to ...
How severe is CVE-2012-0232?
CVE-2012-0232 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-0232?
Check the references section above for vendor advisories and patch information. Affected products include: Ge Intelligent Platforms Proficy Real-Time Information Portal.