7 matches found
Phoenix Contact ILC PLCs Improper Authentication (CVE-2016-8371)
The web server in Phoenix Contact ILC PLCs can be accessed without authenticating even if the authentication mechanism is enabled. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Phoenix Contact ILC PLCs Improper Authentication (CVE-2016-8371)
The web server in Phoenix Contact ILC PLCs can be accessed without authenticating even if the authentication mechanism is enabled. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Phoenix Contact WebVisit 2985725 - Authentication Bypass Exploit
Exploit for windows platform in category web applications Exploit Title: Phoenix Contact WebVisit 2985725 - Authentication Bypass Date: 2018-09-30 Exploit Author: Deneut Tijl Vendor Homepage: www.phoenixcontact.com Software Link:...
Phoenix Contact WebVisit 2985725 - Authentication Bypass
Phoenix Contact WebVisit 2985725 - Authentication Bypass Exploit Title: Phoenix Contact WebVisit 2985725 - Authentication Bypass Date: 2018-09-30 Exploit Author: Deneut Tijl Vendor Homepage: www.phoenixcontact.com Software Link:...
Phoenix Contact WebVisit 2985725 - Authentication Bypass
Exploit Title: Phoenix Contact WebVisit 2985725 - Authentication Bypass Date: 2018-09-30 Exploit Author: Deneut Tijl Vendor Homepage: www.phoenixcontact.com Software Link: https://www.phoenixcontact.com/online/portal/nl/?uri=pxc-oc-itemdetail:pid=2985725&library=nlnl&pcck=P-19-05-01&tab=5 Version...
CVE-2016-8371
CVE-2016-8371 affects Phoenix Contact ILC PLCs where the web server can be reached without authentication even when an authentication mechanism is enabled. The issue is described across multiple sources as an improper authentication vulnerability that could allow unauthorized access to the PLC’s ...
Phoenix Contact ILC PLC Authentication Vulnerabilities
OVERVIEW Matthias Niedermaier and Michael Kapfer of HSASec Hochschule Augsburg have identified authentication vulnerabilities in Phoenix Contact’s ILC inline controller PLCs. Phoenix Contact GmbH & Co. KG has produced a mitigation plan that includes an update and recommended security practices to...