2 matches found
Beckhoff ADS Router Use of a Broken or Risky Cryptographic Algorithm (CVE-2017-16718)
Beckhoff TwinCAT 3 supports communication over ADS. ADS is a protocol for industrial automation in protected environments. This protocol uses user configured routes, that can be edited remotely via ADS. This special command supports encrypted authentication with username/password. The encryption...
CVE-2017-16718
Beckhoff TwinCAT 3 uses ADS for communication, where a special command authenticates with a username/password using a fixed encryption key that can be extracted by an attacker. Exploitation requires network access at the moment a route is added. The issue is tied to the ADS routing feature where ...