Default Accounts : Schneider Electric Quantum Ethernet Module Hardcoded Credentials (Telnet)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.103363

Categoría: Default Accounts

Título: Schneider Electric Quantum Ethernet Module Hardcoded Credentials (Telnet)

Resumen: Schneider Electric Quantum Ethernet Module is using known; default credentials.

Descripción: Summary:
Schneider Electric Quantum Ethernet Module is using known
default credentials.

Vulnerability Impact:
Attackers can exploit this issue to gain access to the Telnet port
service, Windriver Debug port service, and FTP service. Attackers can exploit this vulnerability
to execute arbitrary code within the context of the vulnerable device.

Solution:
Updates are available. Please see the references for more information.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-4859
BugTraq ID: 51605
http://www.securityfocus.com/bid/51605
http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-346-01.pdf
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf
http://www.us-cert.gov/control_systems/pdf/ICSA-12-018-01.pdf
http://secunia.com/advisories/47723
XForce ISS Database: schneider-modicon-backdoor(72587)
https://exchange.xforce.ibmcloud.com/vulnerabilities/72587
Common Vulnerability Exposure (CVE) ID: CVE-2011-4860
Common Vulnerability Exposure (CVE) ID: CVE-2011-4861

Copyright Copyright (C) 2011 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.103363
Categoría:	Default Accounts
Título:	Schneider Electric Quantum Ethernet Module Hardcoded Credentials (Telnet)
Resumen:	Schneider Electric Quantum Ethernet Module is using known; default credentials.
Descripción:	Summary: Schneider Electric Quantum Ethernet Module is using known default credentials. Vulnerability Impact: Attackers can exploit this issue to gain access to the Telnet port service, Windriver Debug port service, and FTP service. Attackers can exploit this vulnerability to execute arbitrary code within the context of the vulnerable device. Solution: Updates are available. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4859 BugTraq ID: 51605 http://www.securityfocus.com/bid/51605 http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1 http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-346-01.pdf http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf http://www.us-cert.gov/control_systems/pdf/ICSA-12-018-01.pdf http://secunia.com/advisories/47723 XForce ISS Database: schneider-modicon-backdoor(72587) https://exchange.xforce.ibmcloud.com/vulnerabilities/72587 Common Vulnerability Exposure (CVE) ID: CVE-2011-4860 Common Vulnerability Exposure (CVE) ID: CVE-2011-4861
Copyright	Copyright (C) 2011 Greenbone AG