Schneider Electric Quantum Ethernet Module Multiple Versions Hardcoded Passwords

critical Nessus Network Monitor Plugin ID 720009

Synopsis

The Schneider Electric Quantum Ethernet Module contains hardcoded passwords which can be used via Telnet, FTP, and Windriver debug.

Description

The Schneider Electric Quantum Ethernet Module, as used in the Quantum 140NOE771* and 140CPU65* modules, the Premium TSXETY* and TSXP57* modules, the M340 BMXNOE01* and BMXP3420* modules, and the STB DIO STBNIC2212 and STBNIP2* modules, uses hardcoded passwords for the (1) AUTCSE, (2) AUT_CSE, (3) fdrusers, (4) ftpuser, (5) loader, (6) nic2212, (7) nimrohs2212, (8) nip2212, (9) noe77111_v500, (10) ntpupdate, (11) pcfactory, (12) sysdiag, (13) target, (14) test, (15) USER, and (16) webserver accounts, which makes it easier for remote attackers to obtain access via the (a) TELNET, (b) Windriver Debug, or (c) FTP port.

Solution

Perform vendor recommended mitigations and apply available vendor upgrades.

See Also

http://secunia.com/advisories/47723,http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-346-01.pdf,http://www.securityfocus.com/bid/51605,http://www.us-cert.gov/control_systems/pdf/ICSA-12-018-01.pdf,https://ics-cert.us-cert.gov/advisories/ICSA-12-018-01B,https://exchange.xforce.ibmcloud.com/vulnerabilities/72587,http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1,http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf

Plugin Details

Severity: Critical

ID: 720009

Family: SCADA

Published: 5/8/2019

Updated: 9/30/2019

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Patch Publication Date: 9/23/2013

Vulnerability Publication Date: 9/23/2013

Reference Information

CVE: CVE-2011-4859

BID: 51605