CVE-2009-0216
13.02.2009, 17:30
GE Fanuc iFIX 5.0 and earlier relies on client-side authentication involving a weakly encrypted local password file, which allows remote attackers to bypass intended access restrictions and start privileged server login sessions by recovering a password or by using a modified program module.Enginsight
Vendor | Product | Version |
---|---|---|
ge_fanuc | ifix | 𝑥 ≤ 5.0 |
ge_fanuc | ifix | 2.0 |
ge_fanuc | ifix | 2.2 |
ge_fanuc | ifix | 2.5 |
ge_fanuc | ifix | 2.6 |
ge_fanuc | ifix | 2.21 |
ge_fanuc | ifix | 3.0 |
ge_fanuc | ifix | 3.5 |
ge_fanuc | ifix | 4.0 |
ge_fanuc | ifix | 4.5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References