CVE-2014-5415
Beckhoff Embedded PC Images and TwinCAT Components Exposed Dangerous Method or Function
Beckhoff Embedded PC images before 2014-10-22 and Automation Device Specification (ADS) TwinCAT components might allow remote attackers to obtain access via the (1) Windows CE Remote Configuration Tool, (2) CE Remote Display service, or (3) TELNET service.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Produtos afetados
Beckhoff · Embedded PC ImagesBeckhoff · TwinCAT Components featuring Automation Device Specification (ADS) communicationQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://download.beckhoff.com/download/document/product-security/Advisories/advisory-2014-001.pdfhttps://download.beckhoff.com/download/document/product-security/Advisories/advisory-2014-002.pdfhttps://download.beckhoff.com/download/document/product-security/Advisories/advisory-2014-003.pdfhttps://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2016/icsa-16-278-02.jsonhttps://ics-cert.us-cert.gov/advisories/ICSA-16-278-02https://www.cisa.gov/news-events/ics-advisories/icsa-16-278-02http://www.securityfocus.com/bid/93349