The remote FTP server has an account with a known username / password combination, which is hardcoded into the deviceβs firmware and difficult to change or remove. An attacker may be able to use this to gain privileged authenticated access to the system, which could allow for other attacks against the affected device.
Binary data scada_modicon_default_ftp.nbin