Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SCADA_XLWEB_2_4_1.NBIN
HistoryMar 26, 2015 - 12:00 a.m.

Honeywell XL Web Controller FTP Directory Traversal

2015-03-2600:00:00
This script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
JSON

The remote host is a Honeywell XL Web SCADA controller that is running a firmware version affected by a directory traversal vulnerability in the FTP server. A remote, unauthenticated attacker can exploit this to gain access to the web root directory.

Binary data scada_xlweb_2_4_1.nbin
VendorProductVersionCPE
honeywellfalcon_xlweb_xlwebexecpe:/h:honeywell:falcon_xlweb_xlwebexe
JSON