Andrew Brooks

Name of the Vulnerable Software and Affected Versions: Verax NMS versions prior to 2.10 Description: The issue allows authentication via the encrypted password without knowing the cleartext password. Recommendations: For versions prior to 2.10, update to version 2.10 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** IBM Datacap Taskmaster Capture versions 8.0.1, and 8.1 before FP2 **Description** The issue is related to a stack-based buffer overflow in the Taskmaster Capture ActiveX control, which allows remote attackers to execute arbitrary code via unspecified vectors. **Recommendations** For IBM Datacap Taskmaster Capture version 8.0.1, update to a version that includes the fix for this issue. For IBM Datacap Taskmaster Capture version 8.1, apply FP2 or a later fix pack to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** IntegraXor SCADA Server versions 4.00 build 4250.0 and earlier **Description** The issue is related to multiple buffer overflows in an ActiveX control. This allows remote attackers to execute arbitrary code via a crafted HTML document. **Recommendations** For versions 4.00 build 4250.0 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.