Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2009-4463
HistoryDec 30, 2009 - 8:00 p.m.

CVE-2009-4463

2009-12-3020:00:01
CWE-255
mitre
web.nvd.nist.gov
24
cve-2009-4463
intellicom
netbiter
webscada
default passwords
hicp
remote attackers
denial of service

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0.013

Percentile

86.3%

JSON

Intellicom NetBiter WebSCADA devices use default passwords for the HICP network configuration service, which makes it easier for remote attackers to modify network settings and cause a denial of service. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product’s installation documentation. NOTE: this issue was originally reported to be hard-coded passwords, not default passwords.

Affected configurations

Nvd
Node
intellicomnetbiter_webscada_firmwareMatch3.11.0
OR
intellicomnetbiter_webscada_firmwareMatch3.11.1
OR
intellicomnetbiter_webscada_firmwareMatch3.11.2
OR
intellicomnetbiter_webscada_firmwareMatch3.12.4
OR
intellicomnetbiter_webscada_firmwareMatch3.12.6
OR
intellicomnetbiter_webscada_firmwareMatch3.13.0beta
OR
intellicomnetbiter_webscada_firmwareMatch3.13.1
OR
intellicomnetbiter_webscada_firmwareMatch3.13.2
OR
intellicomnetbiter_webscada_firmwareMatch3.20.0
OR
intellicomnetbiter_webscada_firmwareMatch3.30.0
OR
intellicomnetbiter_webscada_firmwareMatch3.30.1
OR
intellicomnetbiter_webscada_firmwareMatch3.30.2b184
AND
intellicomnetbiter_webscada_ws100
OR
intellicomnetbiter_webscada_ws200
VendorProductVersionCPE
intellicomnetbiter_webscada_firmware3.11.0cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.11.0:*:*:*:*:*:*:*
intellicomnetbiter_webscada_firmware3.11.1cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.11.1:*:*:*:*:*:*:*
intellicomnetbiter_webscada_firmware3.11.2cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.11.2:*:*:*:*:*:*:*
intellicomnetbiter_webscada_firmware3.12.4cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.12.4:*:*:*:*:*:*:*
intellicomnetbiter_webscada_firmware3.12.6cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.12.6:*:*:*:*:*:*:*
intellicomnetbiter_webscada_firmware3.13.0cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.13.0:beta:*:*:*:*:*:*
intellicomnetbiter_webscada_firmware3.13.1cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.13.1:*:*:*:*:*:*:*
intellicomnetbiter_webscada_firmware3.13.2cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.13.2:*:*:*:*:*:*:*
intellicomnetbiter_webscada_firmware3.20.0cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.20.0:*:*:*:*:*:*:*
intellicomnetbiter_webscada_firmware3.30.0cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.30.0:*:*:*:*:*:*:*
Rows per page:
1-10 of 141

Related

prion 5
cvelist 5
cert 1
nvd 5
cve 4
prion
prion
Hardcoded credentials
2009-12-30 20:00:00
Default credentials
2011-02-15 01:00:00
Path traversal
2011-02-15 01:00:00
cvelist
cvelist
CVE-2009-4463
2009-12-30 19:00:00
CVE-2010-4731
2011-02-14 23:00:00
CVE-2010-4733
2011-02-14 23:00:00
cert
cert
IntelliCom NetBiter devices have default HICP passwords
2010-04-06 00:00:00
nvd
nvd
CVE-2009-4463
2009-12-30 20:00:01
CVE-2010-4732
2011-02-15 01:00:01
CVE-2010-4731
2011-02-15 01:00:01
cve
cve
CVE-2010-4733
2011-02-15 01:00:01
CVE-2010-4730
2011-02-15 01:00:01
CVE-2010-4732
2011-02-15 01:00:01

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0.013

Percentile

86.3%

JSON
Related for CVE-2009-4463
prion5cvelist5cert1nvd5cve4