[Canvas] SCADA+ 1.43 , Agora 2.43 are available!

Yuriy Gurkin audit at gleg.net
Fri Apr 17 12:49:25 EDT 2015


Dear colleagues,
SCADA+ 1.43 contains three 0Days and one public vuln. list :
- DAQFactory <= 5.91  Remote Denial Of Service Exploit. [0-Day]
- ANT Studio Web 2013 v.9190M Feb 26 2013 - DLL Hijacking. [0-Day]
- SCADA/HMI AggreGate <= v.5.11.03 - XXE . [0-Day]
- Advantech ADAMView <=v.4.3 - Buffer Overflow. ICS-ALERT-14-323-02

Agora 2.43 contains nice modules for defense and web software:
 - MantisBT <= v1.2.17 - BruteForce
 - Exim ESMTP 4.80 Denial Of Service Vulnerability. CVE-2015-0235
 - ManageEngine Firewall Analyzer Directory Traversal
 - Symantec Data Center SQL Injection. CVE-2014-9226

Happy hunting,
Gleg ltd's development team
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.immunityinc.com/pipermail/canvas/attachments/20150417/1f9aa609/attachment.html>


More information about the Canvas mailing list