4 matches found
General Electric D20 Password Recovery
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module grabs the device configuration from a GE D20M RTU and parses the usernames and passwords from it. class MetasploitModule 'General Electric D20 Password...
CVE-2012-6663
CVE-2012-6663 affects General Electric D20ME/D20M RTUs. The available connected documentation confirms a vulnerability where device configurations are accessible via TFTP and reveal plaintext usernames and passwords due to improper configuration. The exploitation path is evidenced by the Metasplo...
CVE-2012-6663
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/d20pass.rb 2025-02-06 03:13:41+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:11+00:00| seen|...
General Electric D20 Password Recovery
The General Electric D20ME and possibly other units D200? feature TFTP readable configurations with plaintext passwords. This module retrieves the username, password, and authentication level list. This module requires Metasploit: https://metasploit.com/download Current source:...