Schneider Electric Quantum Ethernet Module Hardcoded Credentials Authentication Bypass Vulnerability
BID:51046
Info
Schneider Electric Quantum Ethernet Module Hardcoded Credentials Authentication Bypass Vulnerability
| Bugtraq ID: | 51046 |
| Class: | Input Validation Error |
| CVE: |
CVE-2011-4859 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 13 2011 12:00AM |
| Updated: | Sep 25 2013 12:15AM |
| Credit: | Rubén Santamarta |
| Vulnerable: |
Schneider Electric Quantum Ethernet Module TSXP576634M 3.5 Schneider Electric Quantum Ethernet Module TSXP575634M 3.5 Schneider Electric Quantum Ethernet Module TSXP574634M 3.5 Schneider Electric Quantum Ethernet Module TSXP573634M 4.9 Schneider Electric Quantum Ethernet Module TSXP572634M 4.9 Schneider Electric Quantum Ethernet Module TSXP571634M 4.9 Schneider Electric Quantum Ethernet Module TSXETY5103 5.0 Schneider Electric Quantum Ethernet Module TSXETY4103 5.0 Schneider Electric Quantum Ethernet Module TSXETC101 1.01 Schneider Electric Quantum Ethernet Module STBNIP2311 3.01 Schneider Electric Quantum Ethernet Module STBNIP2212 2.73 Schneider Electric Quantum Ethernet Module STBNIC2212 2.10 Schneider Electric Quantum Ethernet Module STBNIC2212 2.10 Schneider Electric Quantum Ethernet Module BMXP342030 2.2 Schneider Electric Quantum Ethernet Module BMXP342020 2.2 Schneider Electric Quantum Ethernet Module BMXNOE0110 4.65 Schneider Electric Quantum Ethernet Module BMXNOE0100 2.3 Schneider Electric Quantum Ethernet Module BMXNOC0401 1.01 Schneider Electric Quantum Ethernet Module 140NOE77111 5.0 Schneider Electric Quantum Ethernet Module 140NOE77110 3.3 Schneider Electric Quantum Ethernet Module 140NOE77101 Firmware 4.9 Schneider Electric Quantum Ethernet Module 140NOE77100 3.4 Schneider Electric Quantum Ethernet Module 140NOC77101 1.01 Schneider Electric Quantum Ethernet Module 140NOC77100 1.01 Schneider Electric Quantum Ethernet Module 140CPU65260 3.5 Schneider Electric Quantum Ethernet Module 140CPU65160 3.5 Schneider Electric Quantum Ethernet Module 140CPU65150 3.5 |
| Not Vulnerable: | |
Discussion
Schneider Electric Quantum Ethernet Module Hardcoded Credentials Authentication Bypass Vulnerability
Schneider Electric Quantum Ethernet Module is prone to an authentication-bypass vulnerability.
Attackers can exploit this issue to gain access to the Telnet port service, Windriver Debug port service, and FTP service. Attackers can exploit this vulnerability to execute arbitrary code within the context of the vulnerable device.
Schneider Electric Quantum Ethernet Module is prone to an authentication-bypass vulnerability.
Attackers can exploit this issue to gain access to the Telnet port service, Windriver Debug port service, and FTP service. Attackers can exploit this vulnerability to execute arbitrary code within the context of the vulnerable device.
Exploit / POC
Schneider Electric Quantum Ethernet Module Hardcoded Credentials Authentication Bypass Vulnerability
An attacker can use readily available network utilities to exploit this issue.
An attacker can use readily available network utilities to exploit this issue.
Solution / Fix
Schneider Electric Quantum Ethernet Module Hardcoded Credentials Authentication Bypass Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
Schneider Electric Quantum Ethernet Module Hardcoded Credentials Authentication Bypass Vulnerability
References:
References:
- Schneider Electric Homepage (Schneider Electric)
- ICS-ALERT-11-346-01�??SCHNEIDER ELECTRIC QUANTUM ETHERNET MODULE MULTIPLE VULNERA (Rubén Santamarta)
- ICSA-12-018-01�??SCHNEIDER ELECTRIC QUANTUM ETHERNET MODULE HARD- CODED CREDENTIAL (ICS-CERT)
- REVERSING INDUSTRIAL FIRMWARE FOR FUN AND BACKDOORS (Rubén Santamarta)