Schneider Electric Vijeo Historian Web Server Unspecified Directory Traversal Vulnerability

Bugtraq ID:	50836
Class:	Input Validation Error
CVE:	CVE-2011-4036
Remote:	Yes
Local:	No
Published:	Nov 28 2011 12:00AM
Updated:	Mar 19 2015 08:17AM
Credit:	Schneider Electric
Vulnerable:	Schneider Electric Vijeo Historian 4.30 Schneider Electric Vijeo Historian 4.20 Schneider Electric Vijeo Historian 4.10 Schneider Electric CitectSCADA Reports 4.10 Schneider Electric Citect Historian 4.30 Schneider Electric Citect Historian 4.20
Not Vulnerable:

Schneider Electric Vijeo Historian Web Server Unspecified Directory Traversal Vulnerability

Vijeo Historian, CitectHistorian, and CitectSCADA Reports are prone to a directory-traversal vulnerability because they fail to sufficiently sanitize user-supplied input.

Exploiting this issue will allow an attacker to view arbitrary files within the context of the webserver. Information harvested may aid in launching further attacks.

The following applications are vulnerable:

Vijeo Historian V4.30 and earlier
CitectHistorian V4.30 and earlier
CitectSCADA Reports V4.10 and earlier

Schneider Electric Vijeo Historian Web Server Unspecified Directory Traversal Vulnerability

An attacker can exploit this issue with a web browser.

Schneider Electric Vijeo Historian Web Server Unspecified Directory Traversal Vulnerability

Solution:
Updates are available. Please see the references for details.

Schneider Electric Vijeo Historian Web Server Unspecified Directory Traversal Vulnerability

References:

• Schneider Electric Homepage (Schneider Electric)
  
• ICSA-11-307-01�??SCHNEIDER ELECTRIC VIJEO HISTORIAN WEB SERVER,MULTIPLE VULNERABIL (US-CERT)