Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0984

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2015-0984
Last Modified 03 Jun 2015 10:02:45
Published 30 Mar 2015 09:59:36
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-0984

Summary

Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.

Vulnerable Systems

Operating System

  • Honeywell Excel Web Xl 1000c100 104 I%2fo 2.04.00

  • Honeywell Excel Web Xl 1000c1000 600 I%2fo 2.04.00

  • Honeywell Excel Web Xl 1000c1000 600 I%2fo Uukl 2.04.00

  • Honeywell Excel Web Xl 1000c100u 104 I%2fo Uukl 2.04.00

  • Honeywell Excel Web Xl 1000c50 52 I%2fo 2.04.00

  • Honeywell Excel Web Xl 1000c500 300 I%2fo 2.04.00

  • Honeywell Excel Web Xl 1000c500 300 I%2fo Uukl 2.04.00

  • Honeywell Excel Web Xl 1000c50u 52 I%2fo Uukl 2.04.00


References

MISC - https://ics-cert.us-cert.gov/advisories/ICSA-15-076-02

MISC - https://www.outpost24.com/hacking-industrial-control-systems-case-study-falcon/

FULLDISC - 20150422 CVE-2015-0984 SCADA - Gaining remote shell on Honeywell Falcon XLWEB


Last Updated: 27 May 2016 11:08:16