WAGO IPC 758-870 Hardcoded Password Security Bypass Vulnerability
BID:52940
Info
WAGO IPC 758-870 Hardcoded Password Security Bypass Vulnerability
| Bugtraq ID: | 52940 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 06 2012 12:00AM |
| Updated: | Apr 06 2012 12:00AM |
| Credit: | Reid Wightman of Digital Bond |
| Vulnerable: |
WAGO WAGO 758-870 |
| Not Vulnerable: | |
Discussion
WAGO IPC 758-870 Hardcoded Password Security Bypass Vulnerability
The WAGO IPC 758-870 is prone to a security-bypass vulnerability caused by a hard-coded password.
Successful attacks can allow a remote attacker to gain unauthorized access to the vulnerable device.
The WAGO IPC 758-870 is prone to a security-bypass vulnerability caused by a hard-coded password.
Successful attacks can allow a remote attacker to gain unauthorized access to the vulnerable device.
Exploit / POC
WAGO IPC 758-870 Hardcoded Password Security Bypass Vulnerability
An attacker can carry out this attack using readily available network utilities.
An attacker can carry out this attack using readily available network utilities.
Solution / Fix
WAGO IPC 758-870 Hardcoded Password Security Bypass Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
WAGO IPC 758-870 Hardcoded Password Security Bypass Vulnerability
References:
References:
- Wago Homepage (Wago)
- ICS-ALERT-12-097-01�??WAGO IPC MULTIPLE VULNERABILITIES (US-CERT)