CVE-2011-1900

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1180%

EPSS Percentile21.80th

PublishedMay 4, 2011

Last ModifiedApr 29, 2026

Vulnerability Description

Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 6.1 and 7.x before 7.0+Patch 1 allows remote attackers to execute arbitrary code via an invalid request.

Affected Platforms (CPE)

📦

Indusoft

Web Studio

= 6.1

📦

Indusoft

Web Studio

= 7.0

References & Advisories

🔗 http://www.indusoft.com/hotfixes/hotfixes.php

Related Vulnerabilities

CVE-2011-405110.0

CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 does not require authenticati...

CVE-2011-048810.0

Stack-based buffer overflow in NTWebServer.exe in the test web service in InduSoft NTWebServer, as distributed in Advantech Studio...

CVE-2011-034210.0

Multiple buffer overflows in the InduSoft ISSymbol ActiveX control in ISSymbol.ocx 301.1104.601.0 in InduSoft Web Studio 7.0B2 hot...

CVE-2012-123910.0

The TopAccess web-based management interface on TOSHIBA TEC e-Studio multi-function peripheral (MFP) devices with firmware 30x thr...