CVE-2010-4732

CVSS 9.0 - HIGH
Description

cgi-bin/read.cgi in WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms allows remote authenticated administrators to execute arbitrary code by using a config.html 2.conf action to replace the logo page's GIF image file with a file containing this code, a different vulnerability than CVE-2009-4463.

Affected Products
7
Vendor Product Version
intellicom netbiter_easyconnect_ec150 All versions
intellicom netbiter_modbus_rtu-tcp_gateway_mb100 All versions
intellicom netbiter_serial_ethernet_server_ss100 All versions
intellicom netbiter_webscada_ws100 All versions
intellicom netbiter_webscada_ws200 All versions
intellicom netbiter_nb100 All versions
intellicom netbiter_nb200 All versions
References
http://archives.neohapsis.com/archives/bugtraq/201...
http://www.kb.cert.org/vuls/id/114560
http://www.us-cert.gov/control_systems/pdf/ICSA-10...
http://archives.neohapsis.com/archives/bugtraq/201...
http://www.kb.cert.org/vuls/id/114560
http://www.us-cert.gov/control_systems/pdf/ICSA-10...
Weakness Types
CWE-94
CVE Information
CVE ID:
CVE-2010-4732
Published:
2011-02-15
Modified:
2026-04-29
CVSS Score:
9.0
Severity:
HIGH
Vector:
AV:N/AC:L/Au:S/C:C/I:C/A:C
Affected Vendors
intellicom
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL