Johnson Controls Multiple Products Remote Command Execution Vulnerability

Summary

Multiple Johnson Controls products are prone to a remote command-execution vulnerability.

Credit:

The original article can be found at: http://www.securityfocus.com/bid/54469

The information has been provided by Travis Lee.


Details

Vulnerable Systems:
 * Johnson Controls Multiple Products Remote Command Execution Vulnerability

Successfully exploiting this issue may allow an attacker to execute arbitrary commands within the context of the vulnerable system.

Vendor Status:
Vendor as issued an updated vulnerability.

CVE Information:
CVE-2012-2607

Disclosure Timeline:
Initial Release: Jul 13 2012

Categories: News