Alexey Osipov

**Name of the Vulnerable Software and Affected Versions** Symantec Messaging Gateway versions prior to 10.6.6 **Description** The issue is related to a XML external entity (XXE) exploit. This type of issue occurs when XML input containing a reference to an external entity is processed by a weakly configured XML parser, allowing access to files that should not normally be accessible through file URI schemes or relative paths in the system identifier. **Recommendations** For versions prior to 10.6.6, update to version 10.6.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Symantec Messaging Gateway versions prior to 10.6.6 **Description** The issue is related to an authentication bypass exploit, which can allow attackers to potentially circumvent security mechanisms and gain access to the system or network. **Recommendations** For versions prior to 10.6.6, update to version 10.6.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Nari PCS-9611 relay (affected versions not specified) **Description** An Improper Input Validation issue affects a service within the software, potentially allowing a remote attacker to arbitrarily read or access system resources and impact the system's availability. The vulnerability exists due to insufficient input validation, which can be exploited by a remote attacker to gain read access to arbitrary system resources and affect system availability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Rockwell Automation Allen-Bradley MicroLogix 1100 controller versions prior to 14.000 Rockwell Automation Micrologix 1400 (affected versions not specified) **Description** An issue was discovered where user credentials are sent to the web server in clear text. This may allow an attacker to discover the credentials if they are able to observe traffic between the web browser and the server. The vulnerability is related to the lack of protection for service data, which can be exploited by a remote attacker to obtain user credentials in unencrypted form by eavesdropping on traffic between the browser and the server. **Recommendations** For Rockwell Automation Allen-Bradley MicroLogix 1100 controller versions prior to 14.000, consider disabling web server access until a patch is available to prevent clear text transmission of user credentials. For Rockwell Automation Micrologix 1400, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Inductive Automation Ignition version 7.7.2 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML. **Recommendations** For version 7.7.2, update to a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Invensys Wonderware InTouch HMI versions 2012 R2 and earlier **Description** The issue allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service through CPU and memory consumption. This is related to an XML External Entity (XXE) issue, where an XML document containing an external entity declaration in conjunction with an entity reference can be used for exploitation. **Recommendations** For versions 2012 R2 and earlier, as a temporary workaround, consider restricting access to XML documents and external entity declarations until a patch is available. Additionally, restrict HTTP requests to intranet servers to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** librsvg2 versions 2.26.0 GNOME libsvg versions prior to 2.39.0 **Description** The issue allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. This can lead to a violation of confidentiality, integrity, and availability of protected information. The exploitation of this issue can be carried out remotely. **Recommendations** For librsvg2 version 2.26.0, update to a version that includes the fix for this issue. For GNOME libsvg versions prior to 2.39.0, update to version 2.39.0 or later. As a temporary workaround, consider restricting the use of XML external entities in librsvg2 until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Microsoft Excel versions 2003 SP3, 2007 SP3, and 2010 SP1 and SP2 Excel Viewer Microsoft Office Compatibility Pack version SP3 **Description** An issue exists in the way Microsoft Excel parses specially crafted XML files, allowing remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference. This is related to an XML External Entity (XXE) issue, which is an information disclosure vulnerability. **Recommendations** For Microsoft Excel versions 2003 SP3, 2007 SP3, and 2010 SP1 and SP2, consider disabling the parsing of external entities in XML files until a patch is available. For Excel Viewer, restrict access to specially crafted XML files to minimize the risk of exploitation. For Microsoft Office Compatibility Pack version SP3, avoid using the affected XML parsing functionality until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Schneider Electric Vijeo Citect versions 7.20 and earlier Schneider Electric CitectSCADA versions 7.20 and earlier Schneider Electric PowerLogic SCADA versions 7.20 and earlier **Description** The issue allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. The vulnerability is also associated with insufficient access restrictions to certain functions, which can be exploited by an attacker to achieve similar malicious outcomes. **Recommendations** For Schneider Electric Vijeo Citect versions 7.20 and earlier, consider disabling the XML parsing functionality until a patch is available. For Schneider Electric CitectSCADA versions 7.20 and earlier, restrict access to the affected functions to minimize the risk of exploitation. For Schneider Electric PowerLogic SCADA versions 7.20 and earlier, avoid using the vulnerable XML document processing feature until the issue is resolved. As a temporary workaround, consider implementing additional access controls to limit the potential impact of the vulnerability.

**Name of the Vulnerable Software and Affected Versions** Invensys Wonderware Information Server (WIS) versions 4.0 SP1 through 5.0 **Description** The issue allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. **Recommendations** For versions 4.0 SP1 through 5.0, as a temporary workaround, consider restricting access to XML documents or disabling the processing of external entities until a patch is available.

**Name of the Vulnerable Software and Affected Versions** IBM SPSS Modeler versions 14.0 through 14.2 FP3 IBM SPSS Modeler version 15.0 before FP2 **Description** The issue allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service due to CPU and memory consumption. This is achieved via an XML external entity declaration in conjunction with an entity reference. **Recommendations** For IBM SPSS Modeler versions 14.0 through 14.2 FP3, update to a version after FP3 to resolve the issue. For IBM SPSS Modeler version 15.0 before FP2, update to FP2 or later to resolve the issue.