Unrated severityNVD Advisory· Published Jan 10, 2012· Updated Jun 16, 2026
CVE-2011-5058
CVE-2011-5058
Description
The CmbWebserver.dll module of the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to create arbitrary directories under the web root by specifying a non-existent directory using \ (backslash) characters in an HTTP GET request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- cpe:2.3:a:3ssoftware:codesys:3.4:sp4:patch2:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- aluigi.altervista.org/adv/codesys_1-adv.txtnvdExploit
- secunia.com/advisories/47018nvdVendor Advisory
- www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-336-01A.pdfnvdUS Government Resource
- exchange.xforce.ibmcloud.com/vulnerabilities/72339nvd
News mentions
0No linked articles in our index yet.