CVE-2008-0175

Name of the Vulnerable Software and Affected Versions GE Fanuc Proficy Real-Time Information Portal versions 2.6 and earlier

Description The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the main virtual directory. This is due to an unrestricted file upload vulnerability.

Recommendations For GE Fanuc Proficy Real-Time Information Portal versions 2.6 and earlier, update to a version later than 2.6 to resolve the issue. As a temporary workaround, consider restricting file uploads to only authorized users and validating the file types to prevent executable files from being uploaded.