May 2016

View all on this date written articles further down below.
14 May 2016

[ICS] Meteocontrol WEB’log Multiple Vulnerabilities

MeteoControl WEB’log Meteocontrol is a Germany-based company that maintains offices in several countries around the world, including the US, China, Italy, Spain, France, Switzerland, and Israel. The affected products, WEB’log, are web-based SCADA systems that provide functions to manage energy and power configurations in different connected (energy/industrial) devices.

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-16-133-01

CVE-IDs
CVE-2016-2296
CVE-2016-2297
CVE-2016-2298

Read on for details & poc.

Read more

03 May 2016

Hola!

Few posts lately. Been busy with travel & research work on the side. Posted a new Moxa MiiNePort advisory today. It's been 5 months that I reported it to vendor via CERT team. And Moxa came back finally saying they will fix stuff in August. Same goes with other vendors. Heck, some of the vendors take weeks to reply back. Read on.

Read more

03 May 2016

[ICS] Moxa MiiNePort – Multiple Vulnerabilities

Multiple vulnerabilities are present in Moxa MiiNePort. Following versions have been verified, but it is highly probable all other versions are affected as well.

Confirmed Device Models + Firmware versions
 
Device name MiiNePort_E1_7080
Firmware version 1.1.10 Build 09120714
 
Device name MiiNePort_E1_4641
Firmware version 1.1.10 Build 09120714
 
Device name MiiNePort_E2_1242
Firmware version 1.1 Build 10080614
 
Device name         : MiiNePort_E2_4561
Firmware version    : 1.1 Build 10080614
 
Model name MiiNePort E3
Firmware version 1.0 Build 11071409
 
Vulnerability Summary
1. Weak Credentials Management - CVE-2016-2286
2. Sensitive information not protected - CVE-2016-2295
3. Vulnerable to Cross-Site Request Forgery - CVE-2016-2285

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-16-145-01

Read on for details and poc.

Read more