N/A

A buffer overflow vulnerability was found in some devices of Hirschmann Automation and Control HiOS and HiSecOS. The vulnerability is due to improper parsing of URL arguments. An attacker could exploit this vulnerability by specially crafting HTTP requests to overflow an internal buffer. The following devices using HiOS Version 07.0.02 and lower are affected: RSP, RSPE, RSPS, RSPL, MSP, EES, EES, EESX, GRS, OS, RED. The following devices using HiSecOS Version 03.2.00 and lower are affected: EAGLE20/30.

N/A

ASP.NET误配置：缺少定制错误页面

Belden HiOS 输入验证错误漏洞

Belden HiSecOS是美国百通（Belden）公司的一套用于工业安全路由器的操作系统。 Belden HiOS和HiSecOS中存在输入验证错误漏洞。远程攻击者可借助特制的HTTP请求利用该漏洞在系统上执行任意代码，或导致应用程序崩溃。以下产品及版本受到影响：RSP（HiOS 07.0.02及之前版本）；RSPE（HiOS 07.0.02及之前版本）；RSPS（HiOS 07.0.02及之前版本）；RSPL（HiOS 07.0.02及之前版本）；MSP（HiOS 07.0.02及之前版本）；EES

N/A

输入验证错误