Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and TrafficDOT before 2.10.3 do not verify the integrity of downloaded updates, which allows remote attackers to execute arbitrary code via a Trojan horse update.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2014-09-05T17:00:00

Updated: 2024-08-06T10:14:25.782Z

Reserved: 2014-03-13T00:00:00

Link: CVE-2014-2378

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-09-05T17:55:06.500

Modified: 2024-11-21T02:06:10.603

Link: CVE-2014-2378

cve-icon Redhat

No data.