October 10, 2011

Luigi Auriemma publically disclosed multiple remote vulnerabilities with the atvise webMI2ADS web server application.

Exploiting these issues will allow an attacker to view arbitrary local files within the context of the webserver and crash the affected application, denying service to legitimate users. Information harvested may aid in launching further attacks.

atvise webMI2ADS 1.0 and prior versions are vulnerable.

ICS-ALERT-11-283-02

Vendor Homepage
atvise Product Downloads

Exploit-DB ID 17963 part 1
Exploit-DB ID 17963 part 2
Luigi Auriemma PoC (atvise-1.dat)
Attackers can exploit the directory traversal vulnerability via a browser
Additional PoC links available in Disclosure Reference by Luigi Auriemma

Not available at this time.

Disclosure - atvise (Luigi Auriemma)
Disclosure - webmi2ads (Luigi Auriemma)
Exploit-DB ID 17963
Open-Source Vulnerability Database #76405
Open-Source Vulnerability Database #76276
Open-Source Vulnerability Database #76277
Open-Source Vulnerability Database #76278
Open-Source Vulnerability Database #76279
Secunia Advisory #46338
Secunia Vulnerability Report and Statistics on atvise webMI2ADS
Security Focus Vulnerability Info and Exploit Bugtraq ID 50048

More Holes Beset SCADA Firms (ISSSource)