>> TAG: #0day

Lexmark Services Monitor 2.27.4.0.39 – Directory Traversal

Crystal Live HTTP Server 6.01 – Directory Traversal

Open Proficy HMI-SCADA 5.0.0.25920 – ‘Password’ Denial of Service (PoC)

NCP_Secure_Entry_Client 9.2 – Unquoted Service Paths

MobileGo 8.5.0 – Insecure File Permissions

Centova Cast 3.2.11 – Arbitrary File Download

TemaTres 3.0 – Cross-Site Request Forgery (Add Admin)

Foscam Video Management System 1.1.4.9 – ‘Username’ Denial of Service (PoC)

Emerson PAC Machine Edition 9.70 Build 8595 – ‘FxControlRuntime’ Unquoted Service Path

iSmartViewPro 1.3.34 – Denial of Service (PoC)