Lucene search
+L

359 matches found

Check Point Advisories
Check Point Advisories
added 2012/12/27 12:0 a.m.4 views

Schneider Modicon SCADA Ladder Logic Upload/Download

A vulnerability has been reported in Schneider Electric Modicon Quantum. The vulnerability is due to the use of unauthenticated administrative function...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2012/12/27 12:0 a.m.3 views

Schneider Modicon SCADA Remote START/STOP Command

A vulnerability has been reported in Schneider Electric Modicon Quantum. The vulnerability is due to the use of unauthenticated administrative function...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2012/04/05 5:35 p.m.65 views

Schneider Modicon Quantum Password Recovery

The Schneider Modicon Quantum series of Ethernet cards store usernames and passwords for the system in files that may be retrieved via backdoor access. This module is based on the original 'modiconpass.rb' Basecamp module from DigitalBond. This module requires Metasploit:...

7.3AI score
Exploits0
NVD
NVD
added 2012/01/28 1:55 a.m.16 views

CVE-2012-0930

Cross-site scripting XSS vulnerability in Schneider Electric Modicon Quantum PLC allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS6AI score0.02242EPSS
Exploits0References5
NVD
NVD
added 2012/01/28 1:55 a.m.11 views

CVE-2012-0929

Multiple buffer overflows in Schneider Electric Modicon Quantum PLC allow remote attackers to cause a denial of service via malformed requests to the 1 FTP server or 2 HTTP server...

7.8CVSS7.6AI score0.04928EPSS
Exploits0References6
NVD
NVD
added 2012/01/28 1:55 a.m.15 views

CVE-2012-0931

Schneider Electric Modicon Quantum PLC does not perform authentication between the Unity software and PLC, which allows remote attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors...

9.8CVSS10AI score0.04922EPSS
Exploits0References5
Prion
Prion
added 2012/01/28 1:55 a.m.13 views

Authentication flaw

Schneider Electric Modicon Quantum PLC does not perform authentication between the Unity software and PLC, which allows remote attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors...

7.5CVSS8.9AI score0.04922EPSS
Exploits0References5
Prion
Prion
added 2012/01/28 1:55 a.m.12 views

Buffer overflow

Multiple buffer overflows in Schneider Electric Modicon Quantum PLC allow remote attackers to cause a denial of service via malformed requests to the 1 FTP server or 2 HTTP server...

7.8CVSS7.4AI score0.04928EPSS
Exploits0References6
Prion
Prion
added 2012/01/28 1:55 a.m.20 views

Cross site scripting

Cross-site scripting XSS vulnerability in Schneider Electric Modicon Quantum PLC allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.02242EPSS
Exploits0References5
CVE
CVE
added 2012/01/28 1:0 a.m.50 views

CVE-2012-0931

CVE-2012-0931 concerns Schneider Electric Modicon Quantum PLC. The issue is an authentication gap between the Unity software and the PLC, allowing remote attackers to cause a denial of service or potentially execute arbitrary code via unspecified vectors. Several connected sources (NVD, Tenable O...

9.8CVSS9.9AI score0.04922EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2012/01/28 1:0 a.m.51 views

CVE-2012-0929

Schneider Electric Modicon Quantum PLC is affected by CVE-2012-0929 due to multiple buffer overflows in the PLC’s FTP and HTTP servers. Remote attackers can trigger a denial of service by sending malformed requests to either service. The publicly available details show the impact as DoS with netw...

7.8CVSS7.5AI score0.04928EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2012/01/28 1:0 a.m.22 views

CVE-2012-0930

Cross-site scripting XSS vulnerability in Schneider Electric Modicon Quantum PLC allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6AI score0.02242EPSS
Exploits0References5
Cvelist
Cvelist
added 2012/01/28 1:0 a.m.27 views

CVE-2012-0931

Schneider Electric Modicon Quantum PLC does not perform authentication between the Unity software and PLC, which allows remote attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors...

10AI score0.04922EPSS
Exploits0References5
Cvelist
Cvelist
added 2012/01/28 1:0 a.m.15 views

CVE-2012-0929

Multiple buffer overflows in Schneider Electric Modicon Quantum PLC allow remote attackers to cause a denial of service via malformed requests to the 1 FTP server or 2 HTTP server...

7.6AI score0.04928EPSS
Exploits0References6
CVE
CVE
added 2012/01/28 1:0 a.m.48 views

CVE-2012-0930

The CVE-2012-0930 entry concerns the Schneider Electric Modicon Quantum PLC. All connected sources describe a Cross-Site Scripting (XSS) vulnerability in the Quantum PLC’s web context, enabling remote attackers to inject arbitrary web script or HTML via unspecified vectors. The affected component...

6.1CVSS5.9AI score0.02242EPSS
Exploits0References5Affected Software1
ThreatPost
ThreatPost
added 2012/01/20 5:19 p.m.16 views

Ladder logic

The devices tested by the Basecamp Project included the D20 PLC by GE, The Modicon Quantum by Schneider Electric, Rockwell and Koyo Electronics. Each device was tested using a number of additional attack vectors. Researchers attempted to upload custom firmware or so-called “ladder logic” for the...

1.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/01/19 12:0 a.m.17 views

Modicon Quantum TFTP Arbitrary File Upload

Binary data scadamodicontftpenabled.nbin...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/12/11 12:0 a.m.25 views

Modicon Quantum Telnet Server Default Credentials

Binary data scadamodicontelnet.nbin...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/12/11 12:0 a.m.17 views

Modicon Quantum HTTP Server Default Credentials

Binary data scadamodicondefaultweb.nbin...

7.3AI score
Exploits0
Rows per page
Query Builder