7 matches found
EUVD-2014-9026
Malware in sbrugna...
Beckwith Electric TCP Incorrectly Generates TCP ISN Values Security Bypass Vulnerability
Beckwith Electric is an American transformer. A security bypass vulnerability exists in multiple Beckwith Electric products due to a program failing to properly generate the TCP initial sequence number ISN value, allowing remote attackers to exploit the vulnerability to predict the ISN value to...
Code injection
Beckwith Electric M-6200 Digital Voltage Regulator Control with firmware before D-0198V04.07.00, M-6200A Digital Voltage Regulator Control with firmware before D-0228V02.01.07, M-2001D Digital Tapchanger Control with firmware before D-0214V01.10.04, M-6283A Three Phase Digital Capacitor Bank...
CVE-2014-9201
Beckwith Electric M-6200 Digital Voltage Regulator Control with firmware before D-0198V04.07.00, M-6200A Digital Voltage Regulator Control with firmware before D-0228V02.01.07, M-2001D Digital Tapchanger Control with firmware before D-0214V01.10.04, M-6283A Three Phase Digital Capacitor Bank...
CVE-2014-9201
Beckwith Electric M-6200 Digital Voltage Regulator Control with firmware before D-0198V04.07.00, M-6200A Digital Voltage Regulator Control with firmware before D-0228V02.01.07, M-2001D Digital Tapchanger Control with firmware before D-0214V01.10.04, M-6283A Three Phase Digital Capacitor Bank...
CVE-2014-9201
The CVE-2014-9201 issue affects Beckwith Electric devices that generate TCP initial sequence numbers (ISNs) insecurely, enabling TCP session spoofing due to predictable ISN values. Affected products include the M-6200 and M-6200A Digital Voltage Regulator Controllers (firmware before D-0198V04.07...
Beckwith Electric TCP Initial Sequence Vulnerability
OVERVIEW Raheem Beyah, David Formby, and San Shin Jung of Georgia Tech, via a research project partially sponsored by the Georgia Tech National Electric Energy Testing Research and Applications Center, have identified a TCP initial sequence numbers vulnerability in two of Beckwith Electric’s...