The vulnerability of the “ACTConfig” configuration file of the ABB PCM600 energy management and configuration tool allows a hacker to crack the password and gain access to the main application.

The vulnerability of the “ACTConfig” configuration file of the ABB PCM600 energy management and configuration tool is related to insufficient calculation of the password hash using a unreliable function with a hard-coded key and initialization vector. Exploiting this vulnerability allows an...

The vulnerability of the ABB PCM600 control and configuration device allows a intruder to gain access to user passwords.

The vulnerability of the ABB PCM600 control and configuration device lies in the use of reversible encryption for passwords stored in the ACTConfig configuration file. Exploiting this vulnerability could allow an attacker acting locally to gain access to user passwords...

CVE-2016-4511

ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, which makes it easier for local users to obtain sensitive cleartext information by leveraging read access to the ACTConfig configuration file...

ABB PCM600 Password Hash Vulnerability

The ABB PCM600 is a protection and control IED manager, primarily used in the energy industry. The master application password in the ABB PCM600 ACTConfig configuration file uses a weak hash function. A local attacker could exploit this vulnerability to access the affected device...