Rewterz Threat Advisory – CVE-2020-125226 – Trend Micro ServerProtect for Linux denial of service
January 28, 2021Rewterz Threat Advisory – Microsoft Windows shell handler code execution
January 29, 2021Rewterz Threat Advisory – CVE-2020-125226 – Trend Micro ServerProtect for Linux denial of service
January 28, 2021Rewterz Threat Advisory – Microsoft Windows shell handler code execution
January 29, 2021Severity
High
Analysis Summary
Schneider Electric IGSS could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write in the parsing of CGF files. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
Gain Access
Affected Vendors
Schneider Electric
Affected Products
Schneider Electric IGSS
Remediation
REfer to vendor advisory for the complete list of affected products and their respective patches.