An Authentication Bypass by Capture-Replay issue was discovered in Schneider Electric Modicon Modbus Protocol. Sensitive information is transmitted in cleartext in the Modicon Modbus protocol, which may allow an attacker to replay the following commands: run, stop, upload, and download.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/97562 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-17-101-01 | US Government Resource Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2017-06-30T02:35:00
Updated: 2017-06-30T09:57:01
Reserved: 2017-02-16T00:00:00
Link: CVE-2017-6034
JSON object: View
NVD Information
Status : Modified
Published: 2017-06-30T03:29:00.453
Modified: 2019-10-09T23:28:36.137
Link: CVE-2017-6034
JSON object: View
Redhat Information
No data.