An Incorrect Default Permissions issue was discovered in Schneider Electric Wonderware InduSoft Web Studio v8.0 Patch 3 and prior versions. Upon installation, Wonderware InduSoft Web Studio creates a new directory and two files, which are placed in the system's path and can be manipulated by non-administrators. This could allow an authenticated user to escalate his or her privileges.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: schneider

Published:

Updated: 2024-08-05T16:19:29.522Z

Reserved: 2017-04-19T00:00:00

Link: CVE-2017-7968

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2017-05-19T15:29:00.287

Modified: 2025-04-20T01:37:25.860

Link: CVE-2017-7968

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.