The remote host is a Honeywell XL Web SCADA controller that is running a firmware version affected by a directory traversal vulnerability in the FTP server. A remote, unauthenticated attacker can exploit this to gain access to the web root directory.
Binary data scada_xlweb_2_4_1.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
honeywell | falcon_xlweb_xlwebexe | cpe:/h:honeywell:falcon_xlweb_xlwebexe |