An ActiveX control in KeyHelp.ocx in KeyWorks KeyHelp Module (aka the HTML Help component), as used in GE Intelligent Platforms Proficy Historian 3.1, 3.5, 4.0, and 4.5; Proficy HMI/SCADA iFIX 5.0 and 5.1; Proficy Pulse 1.0; Proficy Batch Execution 5.6; SI7 I/O Driver 7.20 up to and including 7.42; and other products, allows remote malicious users to execute arbitrary commands via crafted input, related to a "command injection vulnerability."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ge intelligent platforms proficy historian 3.1 |
||
ge intelligent platforms proficy historian 3.5 |
||
ge intelligent platforms proficy historian 4.5 |
||
ge intelligent platforms proficy hmi\\/scada ifix 5.1 |
||
ge intelligent platforms proficy batch execution 5.6 |
||
ge intelligent platforms si7 i\\/o driver 7.20 |
||
ge intelligent platforms si7 i\\/o driver 7.42 |
||
ge intelligent platforms proficy pulse 1.0 |
||
ge intelligent platforms proficy historian 4.0 |
||
ge intelligent platforms proficy hmi\\/scada ifix 5.0 |