CVE-2016-15058

CVE-2016-15058 affects Hirschmann HiLCOS Classic Platform switches (Classic L2E, L2P, L3E, L3P < 09.0.06 and Classic L2B

Belden多款产品 安全漏洞

Belden Hirschmann HiLCOS OpenBAT, among others, are products of the American company Belden. Belden Hirschmann HiLCOS OpenBAT is an industrial-grade wireless local area network device. Belden Hirschmann HiLCOS BAT450 is an industrial-grade wireless local area network access point device. Belden...

Hirschmann Automation and Control GmbH Classic Platform Switches

CVSS v3 7.5 ATTENTION: Exploitable remotely/high skill level is needed to exploit. Vendor: Hirschmann Automation and Control GmbH, a division of Belden Inc. Equipment: Classic Platform Switches Vulnerabilities: Session Fixation, Information Exposure Through Query Strings in GET Request, Cleartext...

PT-2017-09: Information Disclosure in Hirschmann Automation and Control GmbH Classic Platform Switches

The specialists of the Positive Research center have detected an Information Disclosure vulnerability in Hirschmann Automation and Control GmbH Classic Platform Switches. A cleartext transmission of information vulnerability in the web interface of Belden Hirschmann RS, RSR, RSB, MACH100, MACH100...

PT-2017-10: Information Disclosure in Hirschmann Automation and Control GmbH Classic Platform Switches

The specialists of the Positive Research center have detected an Information Disclosure vulnerability in Hirschmann Automation and Control GmbH Classic Platform Switches. Vulnerability in the web interface of Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic...

Belden Hirschmann Classic Platform switches L2B Information Disclosure Vulnerability

Belden Hirschmann Classic Platform switches are switch products from Belden USA. An information disclosure vulnerability exists in Belden Hirschmann Classic Platform switches L2B prior to 05.3.07 and L2E, L2P, L3E,L3P prior to 09.0.06, which allows remote attackers to obtain sensitive information...

CVE-2016-2509

The password-sync feature on Belden Hirschmann Classic Platform switches L2B before 05.3.07 and L2E, L2P, L3E, and L3P before 09.0.06 sets an SNMP community to the same string as the administrator password, which allows remote attackers to obtain sensitive information by sniffing the network...

CVE-2016-2509

CVE-2016-2509 concerns Belden Hirschmann Classic Platform switches. The password-sync feature on affected devices (L2B prior to 05.3.07; L2E, L2P, L3E, L3P prior to 09.0.06) can set the SNMP community to the same string as the administrator password, enabling remote attackers to obtain sensitive ...

Hirschmann "Classic Platform" switches reveal administrator password in SNMP community string by default

Overview Hirschmann "Classic Platform" switches contain a password sync feature that syncs the switch administrator password with the SNMP community password, exposing the administrator password to attackers on the local network. Description CWE-257: Storing Passwords in a Recoverable Format For...