PT-2009-6584 · Intellicom · Intellicom Netbiter Webscada

Rubén Santamarta

Publicado

2009-12-30

Atualizado

2018-10-10

CVE-2009-4463

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Intellicom NetBiter WebSCADA devices (affected versions not specified)

Description The issue concerns the use of default passwords for the HICP network configuration service in Intellicom NetBiter WebSCADA devices. This makes it easier for remote attackers to modify network settings and cause a denial of service. It is noted that this is only considered a vulnerability when the administrator does not follow the recommendations provided in the product's installation documentation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-255

Identificadores relacionados

CVE-2009-4463

Produtos afetados

Intellicom Netbiter Webscada

PT-2009-6584 · Intellicom · Intellicom Netbiter Webscada

CVE-2009-4463

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7