Published: 25/08/2017 Updated: 27/07/2021

CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8

CVSS v3 Base Score: 6.3 | Impact Score: 3.4 | Exploitability Score: 2.8

VMScore: 655

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

A Path Traversal issue exists in Automated Logic Corporation (ALC) ALC WebCTRL, i-Vu, SiteScan Web before 6.5; ALC WebCTRL, SiteScan Web 6.1 and prior; ALC WebCTRL, i-Vu 6.0 and prior; ALC WebCTRL, i-Vu, SiteScan Web 5.5 and prior; and ALC WebCTRL, i-Vu, SiteScan Web 5.2 and prior. An authenticated attacker may be able to overwrite files that are used to execute code. This vulnerability does not affect version 6.5 of the software.

Vulnerable Product	Search on Vulmon	Subscribe to Product
automatedlogic i-vu
automatedlogic sitescan web
carrier automatedlogic webctrl

Automated Logic WebCTRL 61 Path Traversal Arbitrary File Write Vendor: Automated Logic Corporation Product web page: wwwautomatedlogiccom Affected version: ALC WebCTRL, SiteScan Web 61 and prior ALC WebCTRL, i-Vu 60 and prior ALC WebCTRL, i-Vu, SiteScan Web 55 and prior ALC WebCTR ...

Automated Logic WebCTRL version 61 suffers from path traversal and arbitrary file write vulnerabilities ...

CWE-22 https://ics-cert.us-cert.gov/advisories/ICSA-17-234-01 http://www.securityfocus.com/bid/100452 https://www.exploit-db.com/exploits/42543/https://nvd.nist.gov https://www.exploit-db.com/exploits/42543/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-9640

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect