PT-2016-5085 · Abb · Abb Panel Builder 800

Ivan Sanchez

Published

2016-03-18

Updated

2016-03-21

CVE-2016-2281

CVSS v3.1

7.2

High

Vector

AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ABB Panel Builder 800 version 5.1

Description The issue allows local users to gain privileges via a Trojan horse DLL in the current working directory due to an untrusted search path vulnerability.

Recommendations For ABB Panel Builder 800 version 5.1, consider restricting the execution of files from untrusted directories to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2016-2281

Affected Products

Abb Panel Builder 800

PT-2016-5085 · Abb · Abb Panel Builder 800

CVE-2016-2281

Weakness Enumeration

Related Identifiers

Affected Products

References · 3