Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4879

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2012-4879
Last Modified 11 Oct 2013 10:45:26
Published 06 Sep 2012 08:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4879

Summary

The Linux Console on the WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices has a default password of wago for the (1) root and (2) admin accounts, (3) a default password of user for the user account, and (4) a default password of guest for the guest account, which makes it easier for remote attackers to obtain login access via a TELNET session, a different vulnerability than CVE-2012-3013.

Vulnerable Systems


References

CONFIRM - http://www.wago.com/wagoweb/documentation/app_note/a1176/a117600e.pdf

MISC - http://www.us-cert.gov/control_systems/pdf/ICSA-12-249-02.pdf


Last Updated: 27 May 2016 11:00:31