Koyo ECOM100 Ethernet Module Multiple Security Vulnerabilities

Bugtraq ID:	51634
Class:	Unknown
CVE:	CVE-2012-1805 CVE-2012-1806 CVE-2012-1807 CVE-2012-1808 CVE-2012-1809
Remote:	Yes
Local:	No
Published:	Jan 23 2012 12:00AM
Updated:	Apr 11 2012 10:40PM
Credit:	Reid Wightman
Vulnerable:	Koyo H4-ECOM100 0 Koyo H4-ECOM-F 0 Koyo H4-ECOM 0 Koyo H2-ECOM100 0 Koyo H2-ECOM-F 0 Koyo H2-ECOM 0 Koyo H0-ECOM100 0 Koyo H0-ECOM 0 Koyo ECOM100 Ethernet Module 0
Not Vulnerable:

Koyo ECOM100 Ethernet Module Multiple Security Vulnerabilities

Koyo ECOM100 Ethernet Module is prone to multiple unspecified vulnerabilities including:

1. A buffer-overflow vulnerability.
2. A denial-of-service vulnerability.
3. Multiple security-bypass vulnerabilities.
4. A cross site-scripting vulnerability.

Attackers can exploit these issues to execute arbitrary code in the context of the affected application, cause denial-of-service conditions, bypass some security restrictions, allow an attacker to steal cookie-based information, or execute script code in the context of the browser of an unsuspecting user; other attacks may also be possible.

Koyo ECOM100 Ethernet Module Multiple Security Vulnerabilities

A brute force password cracking tool has been released that targets the weak authentication vulnerability in the ECOM series modules. Please the references for details.

Koyo ECOM100 Ethernet Module Multiple Security Vulnerabilities

Solution:
Vendor updates are available. Please see the references for more information.

Koyo ECOM100 Ethernet Module Multiple Security Vulnerabilities

References:

• ICS-ALERT-12-020-05A�??KOYO ECOM100 MULTIPLE VULNERABILITIES (ICS-CERT)
  
• Koyo Homepage (Koyo)
  
• ICS-ALERT-12-020-05�??KOYO ECOM100 MULTIPLE VULNERABILITIES (CERT)
  
• ICSA-12-102-02�??KOYO ECOM MODULES MULTIPLE VULNERABILITIES (ICS-CERT)